From: Christian Bockermann <chris@jw...> - 2009-04-22 09:14:39
Schöke, Karsten wrote:
> i'll blocking all data:text/html uri's.
> What ist the best way?
I'm not sure what you exactly want to block, ie. what is a
Sounds like you want to block all requests for which the server responds
with text/html data?
Then you might want to try
SecRule RESPONSE_CONTENT_TYPE "text/html" "phase:3,drop,log,auditlog"
Please note that the RESPONSE_CONTENT_TYPE variable is only available in
phases 3 or later.
The downside here is that these requests still get processed by your
application. To prevent this, you'd need to specify the URIs which
produce text/html data as responses and block the requests based on this