Re: Can I add a NEW SECTION to URLSCAN?
From: Karl Levinson [x y] mvp (levinson_k@excite.com)
Date: 12/13/02
- Next message: Karl Levinson [x y] mvp: "Re: urlscan configuration for specific cgi apps"
- Previous message: Tom Pepper Willett: "Re: explorer patch"
- In reply to: Clay Ramsey: "Can I add a NEW SECTION to URLSCAN?"
- Next in thread: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Karl Levinson [x y] mvp" <levinson_k@excite.com> Date: Thu, 12 Dec 2002 19:52:19 -0500
I doubt adding a new section would do anything. However, make sure you have
the latest version of URLScan and read the documentation that comes with it.
I could be wrong, but I seem to remember reading here that what you want to
do was possible in the latest versions.
"Clay Ramsey" <clayramsey@yahoo.com> wrote in message
news:efc4ab3d.0212121455.37521ea1@posting.google.com...
> Greetings all.
>
> As you are aware, URLSCAN has sections like [DenyUrlSequences].
>
> Can I *ADD* a new section to it? Like [AllowUrlSequences]?
>
> It would be pretty handy in that you could deny .exes, but allow a
> particular exe.
>
> As it is, I am allowing all .exes on a server, but disallowing
> cmd.exe, root.exe, and admin.dll. I'm not too keen on this since I am
> allowing ALOT of other attack vectors. The worst offenders are locked
> down, but.........
- Next message: Karl Levinson [x y] mvp: "Re: urlscan configuration for specific cgi apps"
- Previous message: Tom Pepper Willett: "Re: explorer patch"
- In reply to: Clay Ramsey: "Can I add a NEW SECTION to URLSCAN?"
- Next in thread: Karl Levinson [x y] mvp: "Re: Can I add a NEW SECTION to URLSCAN?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
