[mod-security-users] Problem trying to catch malformed requests
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] Problem trying to catch malformed requests
|
From: Leandro M. <lme...@cy...> - 2005-08-12 21:02:40
|
According to Apache documentation: "Although most error messages can be overriden, there are certain circumstances where the internal messages are used regardless of the setting of ErrorDocument. In particular, if a malformed request is detected, normal request processing will be immediately halted and the internal error message returned. This is necessary to guard against security problems caused by bad requests." I've tried to catch malformed requests using mod_security but it seems that they don't even reach mod_security. Does anyone know how to overcome this limitation? Regards, ------------------------------------------------ Leandro Federico Meiners CYBSEC S.A. Security Systems E-mail: lme...@cy... Tel/Fax: [54-11] 4382-1600 Web: http://www.cybsec.com |
