[Modsecurity] false positive for domino webmail
Cristian Manfredini
c.manfredini at gmail.com
Thu Nov 2 05:39:51 EST 2006
This rule is a false positive for domino 6.5 webmail in N-20060928-01
version of rules.conf
#Generic XSS filter
#please report false positives
SecFilterSelective REQUEST_URI "!/mt\.cgi" chain
SecFilter "<[[:space:]]*(script|about|applet|activex|chrome)*>.*(script|about|applet|activex|chrome)[[:space:]]*>"
Other exclusion rules are:
<LocationMatch "/mail">
SecFilterRemove 300015
SecFilterRemove 300016
</LocationMatch>
--
Cristian
_______________
Dott. Cristian Manfredini
Provincia di Reggio Emilia
http://www.cristianmanfredini.it
More information about the Modsecurity
mailing list