Challenge (CAPTCHA) on WHMCS login page

nicola.mazzoccoli61 · August 6, 2019, 10:19pm

Hello, i’m using Cloudflare firewall (JS challenge) to prevent DDos but seems that they cannot mitigated at all , i’m reciving a lot of SPAM From different IP each second on 2 link:
mydomain.com//billing/clientarea.php
mydomain.com/billing/dologin.php

So i would like to add Cloudflare captcha on clientarea path… i’ve create a new rule:

(http.request.full_uri eq “www.mydomain.info/billing/clientarea.php” and http.request.full_uri eq “mydomain.info/billing/clientarea.php”)`

but seems doesn’t work… i’ve also tried with URI PATH and HOSTNAME on expression editor… but seems doens’t work too… what i’m missing?

sandro · August 7, 2019, 12:12pm

That full_uri requires a proper URI, which includes the scheme as well. You better take uri.path

(http.request.uri.path eq "/billing/clientarea.php")

system · August 20, 2019, 10:35pm

This topic was automatically closed after 14 days. New replies are no longer allowed.

Topic		Replies	Views
Captcha-solving Botnet Security	3	1115	April 18, 2024
How to always Enable the captcha on ddos protection Security	9	6198	June 17, 2020
Still getting attention required when whitelisted from php Getting Started	2	2613	November 19, 2018
CAPTCHA for contact us page Getting Started dash-getting-started	7	3869	July 7, 2019
[HELP] Spamming my /dologin.php and Cloudflare doesn't stop them anymore Security dash-getting-started	13	3345	June 27, 2019