Results 1 to 2 of 2
  1. #1
    Join Date
    Jan 2002
    Posts
    269

    scanning file uploads with mod_security

    I would like to use mod_security to block file uploads containing php or perl code.

    This section of the documentation suggests it is possible to do this using a 'SecUploadApproveScript':
    http://www.modsecurity.org/documenta....9.html#N1078E

    Has anyone tried this?

  2. #2
    Join Date
    Jun 2004
    Location
    Los Angeles
    Posts
    87
    This thing looks awesome. I think I'll have to try it out right now. I am interested in the exit statuses that mod security is expecting though. For example, if I don't like the file, can I delete or chmod it before the php script can write/move it?

  3. Newsletters

    Subscribe Now & Get The WHT Quick Start Guide!

Related Posts from theWHIR.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •