diff options
author | mh <mh@immerda.ch> | 2009-03-15 20:35:49 +0000 |
---|---|---|
committer | mh <mh@immerda.ch> | 2009-03-15 20:35:49 +0000 |
commit | a5f7b21fade938b72683a712a69589828c2a16de (patch) | |
tree | 4ef3222efbd4dce498fd1355756af93bc3551de4 /files | |
parent | dcf89feffcf92517946f7c4df18262601c7b1d7e (diff) |
added default rewrite rules for joomlas
Diffstat (limited to 'files')
-rw-r--r-- | files/conf.d/joomla.inc | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/files/conf.d/joomla.inc b/files/conf.d/joomla.inc new file mode 100644 index 0000000..1535ce3 --- /dev/null +++ b/files/conf.d/joomla.inc @@ -0,0 +1,30 @@ +########## Begin - Rewrite rules to block out some common exploits +# against joomla's +# +# Block out any script trying to set a mosConfig value through the URL +RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR] + +# Block out any script trying to base64_encode crap to send via URL +RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR] + +# Block out any script that includes a <script> tag in URL +RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR] + +# Block out any script trying to set a PHP GLOBALS variable via URL +RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR] + +# Block out any script trying to modify a _REQUEST variable via URL +RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2}) [OR] + +# Block out any script that tries to set CONFIG_EXT (com_extcal2 issue) +RewriteCond %{QUERY_STRING} CONFIG_EXT(\[|\%20|\%5B).*= [NC,OR] + +# Block out any script that tries to set sbp or sb_authorname via URL (simpleboard) +RewriteCond %{QUERY_STRING} sbp(=|\%20|\%3D) [OR] +RewriteCond %{QUERY_STRING} sb_authorname(=|\%20|\%3D) + +# Send all blocked request to homepage with 403 Forbidden error! +RewriteRule ^(.*)$ index.php [F,L] +# +########## End - Rewrite rules to block out some common exploits + |