N
Nuxtβ€’7mo ago
roobr

Tips to secure your nuxt Application.

Hi All, I am currently having lots of triggers on my production build of people triggering routes that dont exist like.env and the likes, is there any way to time these people out or block them if they hit to many wrong routes?
16 Replies
harlan
harlanβ€’7mo ago
Easiest solution is to use a firewall service in front of your site
harlan
harlanβ€’7mo ago
Amazon Web Services, Inc.
Web Application Firewall, Web API Protection - AWS WAF - AWS
AWS WAF helps you protect against common web exploits and bots that can affect availability, compromise security, or consume excessive resources.
roobr
roobrOPβ€’7mo ago
What rules specifically? on cloudflare I block all countries but my own but on the VM I can do some extra ones Thanks for the suggestion
harlan
harlanβ€’7mo ago
WAF comes with a best practices rule set i'm sure cloudflare has something equivlaent
roobr
roobrOPβ€’7mo ago
We are running in azure but I assume it has similar. I will have a look
harlan
harlanβ€’7mo ago
Cloud-Based WAF Security | Web Application Firewall | Cloudflare
Cloudflare's WAF security service offers industry leading protection. See how our cloud-based WAF service can keep your applications secure.
harlan
harlanβ€’7mo ago
ye azure would as well
roobr
roobrOPβ€’7mo ago
Thanks for your help!
roobr
roobrOPβ€’7mo ago
I have tried securing it with WAF But I am getting the following
Kyllian
Kyllianβ€’7mo ago
people hitting your website is part of the internet i reckon.
roobr
roobrOPβ€’7mo ago
Yeah, I figured as much. Wasn't sure if there is a common thing I was missing to help protect it
Kyllian
Kyllianβ€’7mo ago
just feel the satisfaction when they can't get through πŸ˜›
Yakuzo
Yakuzoβ€’7mo ago
Configure an mTLS certificate between your App and Cloudflare endpoints within WAF. I received a lot of requests and putting this has blocked everyone who isn't authorized Are you sure it's '/logind' and not '/login' into your backend πŸ˜… ???
roobr
roobrOPβ€’7mo ago
Good idea, I will look into this What do you mean?
Yakuzo
Yakuzoβ€’7mo ago
No description
roobr
roobrOPβ€’7mo ago
This wasnt by me, my routes are login
Want results from more Discord servers?
Add your server