Re: [mod-security-users] sec_filter_out: Invalid Content-Length: 0
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] sec_filter_out: Invalid Content-Length: 0
|
From: Ivan R. <iv...@we...> - 2005-09-27 12:11:15
|
Philippe Bourcier wrote: > >> But, mod_security should look at the bodies of GIF images, shouldn't >> it? > > I don't think so... and why would that change the content-length anyway ? It wouldn't, read on... >> Are you using SecFilterOutputMimeTypes to restrict output >> filtering by MIME type? > > No, I don't need this, especially while filtering the output. If you are not using it your proxy is wasting CPU cycles working through every image you serve. And you may encounter false positives too. Something like: SecFilterOutputMimeTypes "(null) text/plain text/html" would make sure images are untouched. In fact, this is the default value in 1.9. >> If you want to try something from the 1.9 branch, 1.9 Release >> Candidate will be ready on Monday. > > > Nice, I'll install it when it's released. Great. You'll see a message on this list when it is released. -- Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |
