Re: [mod-security-users] Are PHP-IDS rules only for php applications?
Brought to you by:
victorhora,
zimmerletw
From: Ryan B. <rya...@br...> - 2010-05-25 21:35:05
|
On Tuesday 25 May 2010 14:54:41 John Li wrote: > Hi, > > The php-ids rules from core rule set are giving me a lot of headache and I > am wondering if I can just completely remove them since there is no PHP > applications behind ModSecurity. > > Thanks a lot for your advice. > The phpids filters are created by converting the default_filters.xml file from the phpids site - https://svn.php-ids.org/svn/trunk/lib/IDS/default_filter.xml The attacks that are detected in this file are not php-specific and are relevant to all web platforms. The XSS and SQLi rules in the phpids filters provide increased protections vs what we had in the CRS. -Ryan > -- > John Jun Li > jl...@jl...<mailto:jl...@jl...> > > My Blog: http://www.jlisbz.com > My LinkedIn Profile: http://www.linkedin.com/in/johnjunli |