How to block website proxying through Nginx?

A

Andrey2018-03-17 10:59:59

Nginx

Andrey, 2018-03-17 10:59:59

The bottom line is this - someone raised a full copy of our site on another domain and is engaged in phishing. Apparently, this is done through proxying in NGINX, since the information changes instantly. Banning domains does not help, they register another one right away. As a simple protection, JS made that checks the domain and redirects to our site and wraps it in obfuscation, but most likely there is a smarter solution, because sooner or later everything is found through diff and if stubborn people are there, they will change it.
UPD: since there is a search on the site, I entered a test request and found IP from the logs. Net ban will temporarily solve the problem, I think, until they buy new proxies.

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

C

chromimon, 2018-03-17
@chromimon

firstly, if this is a really big problem, then you can easily capture a lot of traffic on one client IP address. And ban him.
secondly, you can make all links with full addresses, then with any transition the user will return to your site.
thirdly, after loading the page, you can check the JS URL and reload the page.

D

Dimonchik, 2018-03-17
@dimonchik2013

well, not phishing, but a traffic gun, and
did you put the "simple" tag yourself? ))))))))))))))))
with proxers, the fight is a whole science, from technical to GWT and abuse