Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
|
litespeed_wiki:waf:standalone [2018/05/16 19:29] Eric Leu [Verify Comodo] |
litespeed_wiki:waf:standalone [2018/10/05 16:01] Lisa Clarke [How to Setup Comodo on Standalone LiteSpeed Web Server] Proofreading |
||
|---|---|---|---|
| Line 6: | Line 6: | ||
| * Preventing SQL injection and Cross Site Scripting (XSS) attacks | * Preventing SQL injection and Cross Site Scripting (XSS) attacks | ||
| + | The following wiki will explain how to enable the mod_security rule set on a LSWS native server. For a control panel environment, these steps are unnecessary. Simply enable the mod_security rule set from the control panel, the same way you would enable a rule set for Apache. For more information on that, please see [[litespeed_wiki:waf#with_a_control_panel|this wiki]]. | ||
| ===== Download and Extract Rules ===== | ===== Download and Extract Rules ===== | ||
| Line 69: | Line 70: | ||
| </code> | </code> | ||
| - Create a dummy file \\ <code>touch bob.txt</code> | - Create a dummy file \\ <code>touch bob.txt</code> | ||
| - | - Open http://example.com/delete.php?filename=bob.txt;id | + | - Open <code> http://$server_domain/delete.php?filename=bob.txt;id </code> |
| If WAF works, you will get a 403 forbidden page | If WAF works, you will get a 403 forbidden page | ||