Re: [mod-security-users] mod_security enhancement idea
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] mod_security enhancement idea
|
From: Tom A. <tan...@oa...> - 2006-04-11 18:34:39
|
Terry Dooher wrote: > Let's assume that the sample rule: > > SecFilterSelective REQUEST_URI "^/mls_verifyemail0.php" allow > > [1] Am I right in believing that REQUEST_URI is just the requested file > with POST, but includes the query string with GET requests? (I'm working > from a 1.87 manual) In the example above, it would allow query string arguments. If you add a trailing "$" after ".php", then only the file with no arguments would be allowed in a GET. Tom |
