[MediaWiki-commits] [Gerrit] Varnish: expand filter_noise URLs - change (operations/puppet)

Wed, 20 Nov 2013 12:13:21 -0800 

Faidon Liambotis has uploaded a new change for review.

  https://gerrit.wikimedia.org/r/96576


Change subject: Varnish: expand filter_noise URLs
......................................................................

Varnish: expand filter_noise URLs

There are other variations of the same Joomla exploit. Filter those out
too.

Change-Id: Id8bc3736432ca1f43b827137039051cc7d27fab0
---
M templates/varnish/mobile-frontend.inc.vcl.erb
M templates/varnish/text-frontend.inc.vcl.erb
2 files changed, 2 insertions(+), 2 deletions(-)


  git pull ssh://gerrit.wikimedia.org:29418/operations/puppet 
refs/changes/76/96576/1

diff --git a/templates/varnish/mobile-frontend.inc.vcl.erb 
b/templates/varnish/mobile-frontend.inc.vcl.erb
index 2c47063..d1cd931 100644
--- a/templates/varnish/mobile-frontend.inc.vcl.erb
+++ b/templates/varnish/mobile-frontend.inc.vcl.erb
@@ -5,7 +5,7 @@
 include "zero.inc.vcl";
 
 sub filter_noise {
-       if (req.request == "POST" && req.url ~ 
"index\.php\?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b$")
 {
+       if (req.request == "POST" && req.url ~ 
"index\.php\?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=")
 {
                error 403 "Noise";
        }
 }
diff --git a/templates/varnish/text-frontend.inc.vcl.erb 
b/templates/varnish/text-frontend.inc.vcl.erb
index 7e17e40..e523e75 100644
--- a/templates/varnish/text-frontend.inc.vcl.erb
+++ b/templates/varnish/text-frontend.inc.vcl.erb
@@ -46,7 +46,7 @@
 }
 
 sub filter_noise {
-       if (req.request == "POST" && req.url ~ 
"index\.php\?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b$")
 {
+       if (req.request == "POST" && req.url ~ 
"index\.php\?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=")
 {
                error 403 "Noise";
        }
 }

-- 
To view, visit https://gerrit.wikimedia.org/r/96576
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings

Gerrit-MessageType: newchange
Gerrit-Change-Id: Id8bc3736432ca1f43b827137039051cc7d27fab0
Gerrit-PatchSet: 1
Gerrit-Project: operations/puppet
Gerrit-Branch: production
Gerrit-Owner: Faidon Liambotis <[email protected]>

_______________________________________________
MediaWiki-commits mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits

Reply via email to