Support the ongoing development of Laravel.io →
Security Configuration

My SaaS product has been the target of people using SQLMap. I've been trying to figure out how to block them using fail2ban.

So I guess that if Laravel could return 400 (Bad Request) instead of 302 (Found) and still show the user the form and error messages, I could create a regex that looks for IP addresses with too many 400s and let fail2ban do it's job.

Last updated 2 years ago.
0

Sign in to participate in this thread!

Eventy

Your banner here too?

wyred wyred Joined 5 Feb 2014

Moderators

We'd like to thank these amazing companies for supporting us

Your logo here?

Laravel.io

The Laravel portal for problem solving, knowledge sharing and community building.

© 2025 Laravel.io - All rights reserved.