nginx deny user agent causes error when not encapsulated in quotes

Question

I'm trying to deny some user agents I constantly see probing my nginx web server.

If I have this in my .conf file

 ## Block http user agent - morpheus fucking scanner ##
    if ($http_user_agent ~* (morfeus fucking scanner|ZmEu)) {
       return 403;
    }

I get the following error when starting services:

nginx: [emerg] invalid condition "$http_user_agent" in /etc/nginx/sites-enabled/siteXXX:19
nginx: configuration file /etc/nginx/nginx.conf test failed

If I place quotation marks around it, it starts but doesn't deny as I would expect it to.

 ## Block http user agent - morpheus fucking scanner ##
    if ($http_user_agent ~* "(morfeus fucking scanner|ZmEu)") {
       return 403;
    }

Any ideas? Im looking for a case-insensitive user agent deny.

score 12 · Accepted Answer · answered Feb 14 '13 at 04:00

12

Just drop the brackets and add quotes:

if ($http_user_agent ~* "morfeus fucking scanner|ZmEu") {
    return 403;
}

answered Feb 14 '13 at 04:00

mgorven

30,036
7
76
121

DukeLion · Answer 2 · 2013-02-19T08:02:21.817

1

what is the string you are trying to match?

Regex should be in quotes, but if you want to match regex special symbol (,),| - you need to escape it with \

try this: $http_user_agent ~ "(morfeus fucking scanner)|ZmEu"

edited Feb 19 '13 at 08:02

answered Feb 14 '13 at 03:38

DukeLion

3,239
1
17
19

nginx deny user agent causes error when not encapsulated in quotes

2 Answers2

Linked