kys20

2026-06-03 11:32:02 +01:00
parent 30a9483402
commit a6860e338d
2 changed files with 1 additions and 1 deletions
--- a/conf/modsecurity.conf
+++ b/conf/modsecurity.conf
@@ -8,7 +8,7 @@ SecAuditLogType Serial
 SecAuditLog /var/log/modsecurity/audit.log

 # sql injection
-SecRule ARGS "(?i)(['\"]|--|#|/\*|\*/)" \
+SecRule ARGS|REQUEST_BODY "['\"].*--" \
    "id:950001,phase:2,deny,status:403,msg:'SQL Injection: Escape or Comment',log,t:urlDecode,t:lowercase"

 # sql keyword
--- a/relatorio/imgs/the-luscious-middle-empire-by-v0-e6o4aifoa6zg1.png
+++ b/relatorio/imgs/the-luscious-middle-empire-by-v0-e6o4aifoa6zg1.png