Re: Can I add a NEW SECTION to URLSCAN?
From: BB (Bernard_at_3exp.com)
Date: 12/13/02
- Next message: BB: "Re: The system cannot find the file specified."
- Previous message: BB: "Re: urlscan configuration for specific cgi apps"
- In reply to: Clay Ramsey: "Can I add a NEW SECTION to URLSCAN?"
- Next in thread: Jeff Cochran: "Re: Can I add a NEW SECTION to URLSCAN?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "BB" <Bernard_at_3exp.com> Date: Fri, 13 Dec 2002 20:44:14 +0800
This can be done via 'Thomas' solution which set 'executable'
permission on certain .exe file.
Subject: urlscan configuration for specific cgi apps
Sender: billemery
Date: 12/12/2002 7:35am
but it won't be as simple as adding a 'New section' in urlscan.
and you still need to take out .exe in 'deny extension' section
Rgds.
"Clay Ramsey" <clayramsey@yahoo.com> wrote in message
news:efc4ab3d.0212121455.37521ea1@posting.google.com...
> Greetings all.
>
> As you are aware, URLSCAN has sections like [DenyUrlSequences].
>
> Can I *ADD* a new section to it? Like [AllowUrlSequences]?
>
> It would be pretty handy in that you could deny .exes, but allow a
> particular exe.
>
> As it is, I am allowing all .exes on a server, but disallowing
> cmd.exe, root.exe, and admin.dll. I'm not too keen on this since I am
> allowing ALOT of other attack vectors. The worst offenders are locked
> down, but.........
- Next message: BB: "Re: The system cannot find the file specified."
- Previous message: BB: "Re: urlscan configuration for specific cgi apps"
- In reply to: Clay Ramsey: "Can I add a NEW SECTION to URLSCAN?"
- Next in thread: Jeff Cochran: "Re: Can I add a NEW SECTION to URLSCAN?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
