Last active
May 3, 2023 10:41
-
-
Save lukecav/405858c6fea88c0127a2624b4e04347e to your computer and use it in GitHub Desktop.
Rate limit the wp-login.php using NGNIX
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
http { | |
limit_req_zone $binary_remote_addr zone=mylimit:10m rate=10r/s; | |
server { | |
location /wp-login.php { | |
limit_req zone=mylimit burst=20 nodelay; | |
} | |
} | |
} |
rate=1r/m would perhaps be a better option ^^
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
https://www.nginx.com/blog/rate-limiting-nginx/
https://www.nginx.com/blog/mitigating-ddos-attacks-with-nginx-and-nginx-plus/
https://www.ryadel.com/en/nginx-request-rate-limit-protect-web-site-http-request-flood-dos-brute-force/