Apache mod_rewrite security rules

Download Apache mod_rewrite security rules

These rules act as a baseline web application firewall built on common attack strings. If you get banned during legitimate traffic, you'll have to remove troubled keywords. If you can't, post'em to us. We'll send you finer version that suits your site. It's a must for all web servers. Remember it cannot help most web application attacks such as Information Leakage, Insufficent Authentication/Authorization, Bruteforcing, Predicatable Resource Location, Logic flaws.
Requirements: Apache with mod_rewrite module enabled
Date: March 2009

Popular posts from this blog

OxWall 1.1.1 <= Multiple Cross Site Scripting Vulnerabilities (CVE-2012-0872)

Open-Realty CMS 3.x | Persistent Cross Site Scripting (XSS) Vulnerability

Jcow CMS 4.x:4.2 <= , 5.x:5.2 <= | Arbitrary Code Execution