[mod-security-users] RE: mod-security-users digest, Vol 1 #127 - 5 msgs
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] RE: mod-security-users digest, Vol 1 #127 - 5 msgs
|
From: Tkachenko A. <al...@tk...> - 2004-10-28 20:38:55
|
>> * Reject Cross site scripting attacks Can anybody give a good example? Especially for: I have many requests like http://URL?PARAMETER=http://atackersite/atackerpage&ANOTHERPARAMETER where "http://atackersite/atackerpage" load some bad script from outside. I can not block them by "=http://" filter because much clients use such form in their work. >> I will release 1.8.6 early next week to fix another >> small issue that has just popped up. My opinion: too hard to be updated so often. Alexey. |
