delete post.rule -＞１２３４５６

config.lua

@@ -28,7 +28,7 @@ config_cookie_check = "on"
 --enable/disable cc filtering #启用cc防御
 --enable/disable cc filtering #启用cc防御
 config_cc_check = "on"
 config_cc_check = "on"
 --cc rate the xxx of xxx secondsa #允许单个ip60秒内只能访问10次
 --cc rate the xxx of xxx secondsa #允许单个ip60秒内只能访问10次
-config_cc_rate = "10/60"
+config_cc_rate = "100/10"
 --enable/disable post filtering  #是否开启post检测
 --enable/disable post filtering  #是否开启post检测
 config_post_check = "on"
 config_post_check = "on"
 --config waf output redirect/html # 选择跳转url或者html
 --config waf output redirect/html # 选择跳转url或者html
@@ -40,11 +40,11 @@ config_output_html=[[
 <head>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
 <meta http-equiv="Content-Language" content="zh-cn" />
 <meta http-equiv="Content-Language" content="zh-cn" />
-<title>block info</title>
+<title>waf block info</title>
 </head>
 </head>
 <body>
 <body>
 
 
-<h1 align="center"> 403 forbidden </h1>
+<p align="center"> Your behavior is considered unsafe by the system and has been blocked</p>
 
 
 </body>
 </body>
 </html>
 </html>

rule-config/post.rule

-password=123456$
-\.\./
 select.+(from|limit)
 select.+(from|limit)
 (?:(union(.*?)select))
 (?:(union(.*?)select))
 sleep\((\s*)(\d*)(\s*)\)
 sleep\((\s*)(\d*)(\s*)\)