2 Jul 06:16
testing the ASCIIZ vulnerability test
From: Rashmi Badan <rashmi.badan <at> gmail.com>
Subject: testing the ASCIIZ vulnerability test
Newsgroups: gmane.comp.apache.mod-security.user
Date: 2008-07-02 04:18:04 GMT
Subject: testing the ASCIIZ vulnerability test
Newsgroups: gmane.comp.apache.mod-security.user
Date: 2008-07-02 04:18:04 GMT
Hi,
I'm trying to test the fix for this vunerability in a mod_security version < 2.1 - basically I am trying a before and after
test as mentioned here -
http://www.php-security.org/MOPB/BONUS-12-2007.html but do not see any
'XSS attack' related message in the error log. Are there any specific
mod_security directives that need to be configured to trigger this error ?
Would appreciate any inputs on this.
Thanks,
Rashmi
------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08
_______________________________________________ mod-security-users mailing list mod-security-users <at> lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mod-security-users
RSS Feed