Re: [mod-security-users] Core rules matches "cd" ???
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] Core rules matches "cd" ???
|
From: Ofer S. <OferS@Breach.com> - 2006-11-14 19:59:53
|
> Amr Wrote: > > Hello dear all, > However cd is a Linux and even windows command ... I think that there is=20 > no very big need to match it in the core rules of modsecurity, I'm using=20 > modsecurity2 with its core rules,=20 > > as this word is very short, a common word "the optical compact disc", and > can be contained in other words frequently .... I think you could rewrite > the regular expression regarding system command injection so as it doesn't > match it ... :) I agree, but the core rule set does not look for "cd", only for "cd ..", exactly for this reason. ~ Ofer |