Why don’t we use GitHub - owasp-modsecurity/ModSecurity-nginx: ModSecurity v3 Nginx Connector and implement it by default in nginx?
Modsecurity is very crucial in this time. 90% of my website bandwidth is consumed by random attacks on Wordpress sites which could be prevented by a simple WAF.
Thanks
Surya
If you want to pay me 10k a month to maintain I might consider it
How is maintaining an open-source project where we don’t have to involve become a hurdle? Could you explain why we have to maintain it rather than just installing it like regular Nginx? We will update the module version whenever required? Correct me If I’m wrong.
Because it need custom building nginx packages. And am not going to maintain that for free…