Re: [mod-security-users] rule for common My_eGallery exploit
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] rule for common My_eGallery exploit
|
From: Ivan R. <iv...@we...> - 2004-08-23 14:18:11
|
> However when I look at some of the example rules on the website, these seem to be handled as: > > wget\x20 > > I assume the \x is a placeholder for % They do the same thing. % is used in URL encoding, while \x is used in regular expressions. In both cases, the two characters that follow are a hexidecimal representation of the character. A simple space does not have to be encoded with \x20, but some other characters (\x0a, \x0d) do. -- ModSecurity (http://www.modsecurity.org) [ Open source IDS for Web applications ] |
