I try to implement the following rule but mod_sec doesn't match:
SecFilterSelective REQUEST_URI "//" deny
I don't understand because all other rules are well performed.
Could you say me how to implement it?
This e-mail is intended only for the above addressee. It may contain
privileged information. If you are not the addressee you must not copy,
distribute, disclose or use any of the information in it. If you have
received it in error please delete it and immediately notify the sender.
Security Notice: all e-mail, sent to or from this address, may be
accessed by someone other than the recipient, for system management and
security reasons. This access is controlled under Regulation of
Investigatory Powers Act 2000, Lawful Business Practises.
From: Ivan Ristic <ivanr@we...> - 2006-01-27 17:58:25
PERA, Christophe wrote:
> I try to implement the following rule but mod_sec doesn't match:
> SecFilterSelective REQUEST_URI "//" deny
> I don't understand because all other rules are well performed.
> Could you say me how to implement it?
You can't, at least not yet. ModSecurity automatically compresses
consecutive / characters into one - that's why yours does not
FYI future releases are likely to allow you to configure
exactly which normalisation methods to apply, and it will become
possible to avoid the problem.
Ivan Ristic, Technical Director
Thinking Stone, http://www.thinkingstone.com
Tel: +44 20 8141 2161, Fax: +44 87 0762 3934