Re: [mod-security-users] 1.9b4 SecFilterRemove question
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] 1.9b4 SecFilterRemove question
|
From: Ivan R. <iv...@we...> - 2005-10-03 12:21:28
|
Rude Yak wrote: > Hi, folks. I've been playing with the latest-and-greatest and trying to apply > it to a situation I'm dealing with on one of my servers. Specifically, I have > a multi-purpose webserver, part of which hosts a weblog. Whereas, for the > majority of the web server, I can afford to have relatively tight input > filtering, it would be nice to be less restrictive for the weblog. To wit, I'm > trying the following in my httpd.conf: > > ... > > <Location ~ "^/blog/"> > SecFilterRemove 1001 > </Location> You are using the directive correctly. Unfortunately, I broke SecFilterImport and SecFilterRemove in 1.9dev4. They are fixed now and will correctly in the forthcoming Release Candidate 1 (today). > Obviously I'm wrong :-) It was not obvious to me ;) -- Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |
