Topics Archives:

You are here:

How to make a custom SSL certificate miner

Why do we need an SSL certificate miner? The WAF module can only listen on HTTP but it needs the SSL Terminating module to be able to listen on HTTPS as well. This module can do this only if it has the SSL certificates of the domains at its disposal. BitNinja has such a cert miner by default ...

How to download the BitNinja Log

If you would like to store the BitNinja logs you need to compress the logs and move it to another location so the log rotation won’t delete the log files. Also, you might need to share logfiles with your sysadmin or with our support ninjas. You can download WinSCP that lets you exchange files ...

Haproxy vulnerability: IP spoof via X-Forwarded-For forgery.

Description Suppose an IP-based access control solution is implemented in your web server (back-end server). In that case, the Haproxy used by BitNinja's SslTerminating module can be exploited to push an arbitrary IP address to the backend webserver behind our WAF module, thus bypassing the afor...

Customize the captcha page

You can make the BitNinja captcha page more user-friendly by customizing it. For example, you can include your company logo. This way, users will be more familiar with it The captcha page can be customized on a per-server basis. The default captcha page is stored in the /opt/bitninja/modules/Ca...

Configuring BitNinja under Enhance control panel

Introduction:When configuring BitNinja on servers using the Enhance control panel, several key adjustments are needed to ensure smooth operation. This guide walks through the essential configuration steps, including handling Docker-specific settings, manually selecting webserver types, and accurate...

Close Direct Access

The Close Direct Access option is enabled by default. The setting can be modified from the Dashboard by navigating to the Configuration menu -> Advanced Modules -> IP Reputation -> Advanced Settings tab. Network aliases are virtual interfaces that allow a single network interface c...

Can’t start BitNinja because an instance is already running

Solution Just echo an empty string to the file. echo "" > /var/lib/bitninja/blue.pid.Try to start the BitNinja agent with service bitninja start command If that does not work for some reason: Delete the whole file with the following commandrm  /var/lib/bitninja/blue.pid -y&...

BitNinja stopped on the server

The server’s box is red or yellow on the Dashboard. This means that the BitNinja health checking service could not reach BitNinja on the server Check if BitNinja is running We need to check if BitNinja is running on the server with service bitninja status command BitNinja is runni...

BitNinja Stats- Plesk360 integration

Our developers have added a new tool to our BitNinjaCLI arsenal. The bitninjacli --stats command can show basic statistics about the BitNinja agent. Its intended use is for integration with monitoring solutions. Usage Issue the command in your terminal as bitinjacli --stats this will show ...

BitNinja rate limiting

With the 2.29.0 version of BitNinja, we introduced the rate limiting feature. This is based on the WAF and SSLTerminating modules. In order to use this feature make sure that the WAF module is enabled and working on the domains, you wish to protect with this feature. You can set a limit for the...