Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
|
litespeed_wiki:waf:standalone [2018/05/16 19:29] Eric Leu [Verify Comodo] |
litespeed_wiki:waf:standalone [2018/10/05 15:50] Jackson Zhang [How to Setup Comodo on Standalone LiteSpeed Web Server] |
||
|---|---|---|---|
| Line 6: | Line 6: | ||
| * Preventing SQL injection and Cross Site Scripting (XSS) attacks | * Preventing SQL injection and Cross Site Scripting (XSS) attacks | ||
| + | The following wiki will show your steps on how to enable mod_security rule set on LSWS native server. For control panel environment, you don't need settings described from here and you can simply enable mod_security rule set from the control panel, the same way as enabling rule set for Apache, please check [[litespeed_wiki:waf#with_a_control_panel|here]]. | ||
| ===== Download and Extract Rules ===== | ===== Download and Extract Rules ===== | ||
| Line 69: | Line 70: | ||
| </code> | </code> | ||
| - Create a dummy file \\ <code>touch bob.txt</code> | - Create a dummy file \\ <code>touch bob.txt</code> | ||
| - | - Open http://example.com/delete.php?filename=bob.txt;id | + | - Open <code> http://$server_domain/delete.php?filename=bob.txt;id </code> |
| If WAF works, you will get a 403 forbidden page | If WAF works, you will get a 403 forbidden page | ||