Quote:
Originally Posted by eMonk
i'm just wondering if current scripts will still operate normally.
|
you have to test them based on the rules you have.
update everything to current versions. Use modsecurity 2
to start get some rules from here ...
http://www.gotroot.com/tiki-index.ph...security+rules
.... other things that help out ...
Make sure your /usr/tmp directory isn't executable
set this to off in your php.ini ... you probably don't need it
allow_url_fopen = Off
ive been having some adventures lately with modsec if you want to hit me up I might be able to shed some light on something ..
goodluck
