[mod-security-users] mod_security patch: cookie and link protection
Brought to you by:
victorhora,
zimmerletw
From: Marc S. <mar...@ap...> - 2009-09-07 06:55:20
|
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> </head> <body bgcolor="#ffffff" text="#000000"> <font face="Trebuchet MS">For those who ignore this, there was an incredibly useful patch proposed to protect cookies, links, and parameters (hidden, listboxes, ...) from tampering. This is one of the very few features that are missing compared to commercial WAF.<br> This patch initially was written for ModSecurity v1.9, but a new contribution was done for v2.<br> <br> I saw no news about this.<br> Does Breach plan to include this soon?<br> If not, why?<br> Could we maybe make a poll to see how many people would like to have this included?<br> <br> Thanks<br> <br> Marc</font> </body> </html> |