-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Mon, 21 Jun 2004, Muthukumar wrote:
> One more change is needed in the patch as,
> make that acl to be available on squid.conf with your detailed comments for that.
> If you wish make that change on patch and send it to list with CC to henrick.
Ok, fixed that - the modified patch is attached.
- ---
The attached patch against squid-2.5.STABLE5 adds a new ACL type called
"urlpath_raw_regex". It works in exactly the same way as "urlpath_regex"
except no unescaping of the URI is done first, which makes it possible to
filter specific attacks that escape some characters in the URI without
blocking legitimate requests.
I.e. you can filter URIs containing "%2easp" (the signature of some
attacks) without blocking legitimate requests for ".asp"
- ---
- - Steve Hill
Senior Software Developer Email: steve@navaho.co.uk
Navaho Technologies Ltd. Tel: +44-870-7034015
... Alcohol and calculus don't mix - Don't drink and derive! ...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Public key available at http://linux.navaho.co.uk/pubkey.steve.txt
iD8DBQFA1/icb26jEkrydY4RAotyAJ0Xn1CV4jAh3TTph95boNN++9ZvGwCgzf+C
LqsYOGLz0piNjjj47b2J4vc=
=c0x9
-----END PGP SIGNATURE-----
This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:03 MDT