[Modsecurity] Formmail
Mike Cardwell
modsecurity at blubbernet.com
Wed Apr 5 11:16:39 EDT 2006
I don't get why these rules exist in jitp.conf:
SecFilterSelective THE_REQUEST "GET .*/formmail\.pl
HTTP\/(0\.9|1\.0|1\.1)$"
SecFilterSelective THE_REQUEST "HEAD .*/formmail\.pl
HTTP\/(0\.9|1\.0|1\.1)$"
SecFilterSelective THE_REQUEST "POST .*/formmail\.pl
HTTP\/(0\.9|1\.0|1\.1)$"
They're basically blocking all formmail requests... The POST one is
particularly bad.
Mike
--
Digital photo printing: http://www.fotoserve.com/
More information about the Modsecurity
mailing list