On Wed, Sep 01, 2010 at 11:49:16AM +0000, Poul-Henning Kamp wrote: > In message <[email protected]>, > Ales > sandro Ronchi writes: > > >is it possible to filter with vernish some known hack attempts, link > >/cltreq.asp?UL=1&ACT=4&BUILD=6254&STRMVER=4&CAPREQ=0 > >/_vti_bin/owssvr.dll/ > > Yes, Kristian did something "mod_security" like I think.
Yeah, I helped Edward and Kacper out with "security.vcl", it's kept in svn under varnish-tools/security.vcl/. It was/is a PoC of how a more generic "security modules for VCL" could be done. Keep in mind that it wont catch data sent through POST data though. - Kristian
signature.asc
Description: Digital signature
_______________________________________________ varnish-misc mailing list [email protected] http://lists.varnish-cache.org/mailman/listinfo/varnish-misc
