Re: [mod-security-users] REQUEST_URI decodes URI before running checks
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] REQUEST_URI decodes URI before running checks
|
From: Ivan R. <iv...@we...> - 2005-02-18 17:03:17
|
Eli wrote: > Now, I couldn't find out if there's a way to disable this URI decoding so it Correct, because there isn't one. (ducks) It's a curse and a blessing. In the current version it is not possible to disable anti-evasion techniques (URL decoding is one of them). It will be possible to fine-tune this behaviour in one of the future versions (not 1.9, most likely the one after that). -- Ivan Ristic (http://www.modsecurity.org) |
