34 lines
1.8 KiB
Markdown
34 lines
1.8 KiB
Markdown
# Troubleshooting
|
|
|
|
## Logs
|
|
|
|
When troubleshooting, the logs are your best friends. We try our best to provide user-friendly logs to help you understand what happened. Please note that we don't store the logs inside the container, they are all displayed on stdout/stderr so Docker can capture them. They can be displayed using the [docker logs](https://docs.docker.com/engine/reference/commandline/logs/) command.
|
|
|
|
## Permissions
|
|
|
|
Don't forget that bunkerized-nginx runs as an unprivileged user with UID/GID 101. Double check the permissions of files and folders for each volumes (see the [volumes list](https://bunkerized-nginx.readthedocs.io/en/latest/volumes.html)).
|
|
|
|
## ModSecurity
|
|
|
|
The OWASP Core Rule Set can sometimes leads to false positives. Here is what you can do :
|
|
- Check if your application has exclusions rules (e.g : wordpress, nextcloud, drupal, ...)
|
|
- Edit the matched rules to exclude some parameters, URIs, ...
|
|
- Remove the matched rules if editing it is too much a hassle
|
|
|
|
Some additional resources :
|
|
- [Wordpress example](https://github.com/bunkerity/bunkerized-nginx/tree/master/examples/wordpress)
|
|
- [Handling false positive](https://www.netnea.com/cms/apache-tutorial-8_handling-false-positives-modsecurity-core-rule-set/)
|
|
- [Adding exceptions and tuning](https://coreruleset.org/docs/exceptions.html)
|
|
|
|
## Whitelisting
|
|
|
|
It's a common case that a bot gets flagged as suspicious and can't access your website. Instead of disabling the corresponding security feature(s) we recommend a whitelist approach. Here is a list of environment variables you can use :
|
|
|
|
- `WHITELIST_IP_LIST`
|
|
- `WHITELIST_REVERSE_LIST`
|
|
- `WHITELIST_URI`
|
|
- `WHITELIST_USER_AGENT`
|
|
|
|
More information [here](https://bunkerized-nginx.readthedocs.io/en/latest/environment_variables.html#custom-whitelisting).
|
|
|