[PATCH] Raw URL path ACL

From: Steve Hill <steve@dont-contact.us>
Date: Wed, 23 Jun 2004 14:09:08 +0100 (BST)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The attached patch adds a new ACL type called "urlpath_raw_regex". It
works in exactly the same way as "urlpath_regex" except no unescaping of
the URI is done first, which makes it possible to filter specific attacks
that escape some characters in the URI without blocking legitimate
requests.

I.e. you can filter URIs containing "%2easp" (the signature of some
attacks) without blocking legitimate requests for ".asp"

The patch was originally written for squid 2.5 and recoded for 3.0 - it
compiles ok but unfortunately I currently have no facilities to test squid
3.0 here ATM.

- - - Steve Hill
Senior Software Developer Email: steve@navaho.co.uk
Navaho Technologies Ltd. Tel: +44-870-7034015

        ... Alcohol and calculus don't mix - Don't drink and derive! ...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Public key available at http://linux.navaho.co.uk/pubkey.steve.txt

iD8DBQFA2YD8b26jEkrydY4RAqMCAJ4vtg0Qhhyf6KJkQVZwPqX1M/L3xACgnlxR
1YJ3b0t9ZE3bwQYRa25g24o=
=j8c8
-----END PGP SIGNATURE-----

Received on Wed Jun 23 2004 - 07:09:57 MDT

This archive was generated by hypermail pre-2.1.9 : Wed Jun 30 2004 - 12:00:03 MDT