Thread: mod_security RESPONSE_BODY
View Single Post
  #10  
Old 03-29-2009, 04:54 AM
yolte yolte is offline
Member
  
Join Date: Feb 2009
Posts: 10
Quote:
Originally Posted by Tony View Post
I'd say more like a site can be hacked because they do not keep up to date versions of their software or make secure software. For hacking an entire server it be even more tricky assuming the site was on it's own account.
I think we have to protect customers web sites who doesn't have enough information about script security?

Quote:
There are other mod_security rules which are already supported which can inflate memory (ones that use location match). I'd rather see the rules that are supported not slow down LSWS to Apache levels.
Can you give me examples which rules are protecting from php shells? (for ex: r57, c99)
Reply With Quote