blank.gif
triangle.gif Du er her: /  Forsiden  /  Tutorial  /  Anker-body-onload   Login nu   Login
blank.gif
««« Se kilde koden
blank.gif
http://www.hvepseeksperten.dk (61)
 

Page has been moved, because of 'onload' is not allowed in url's

apache modsec rules

I have just spent several hours, figuring out, why My server gave Error: 303 on the CSS files

Guess what, The apache security rules have been revised, and some more rules were added.

I found out, that one of the rules, did not allow the word 'onload' as part of the url

  • Look here for the rules:
    • http://z.askapache.com/modsec/10_asl_rules.conf
  • This is the Rule 340020 : 
  • # Rule 340020: 
#XSS in referrer and UA headers 
SecRule REQUEST_HEADERS:REFERER|REQUEST_URI "! 
(?:/plugins/editors/tinymce/jscripts/|/modules/tinymce/tinymce/jscripts|/phpi 
nfo_iframe\.php)" \ 
       "id:340020,t:replaceNulls,t:htmlEntityDecode,t:urlDecodeUni,t:compres 
sWhiteSpace,t:lowercase,rev:11,severity:2,msg:'XSS in referrer and UA 
headers',chain"   
SecRule REQUEST_HEADERS:REFERER "!(^pagead[0-9] 
\.googlesyndication\.com/pagead/|/gills\.swf?txt=<a href= ? 
asfunction:_root\.launchURL|vbscript.*convert.*&hl=.*client=|convert.*vbscrip 
t.*Search)" chain 
SecRule REQUEST_HEADERS:REFERER|REQUEST_HEADERS:User-Agent "(?:<[[:space:]]* 
(?:script|about|applet|activex|chrome).* 
(?:script|about|applet|activex|chrome)[[:space:]]*>|activexobject| 
(?:\.add|\@)import|asfunction\:|background-image\:|e(?:cma|xec) 
script|\.fromcharcode|get(?:parentfolder|specialfolder)|iframe 
|\.innerhtml|\
  • This is the error found in the log files : 
  • [Sun Sep 28 08:31:40 2008] [error] [client ***********] ModSecurity: 
Access denied with code 403 (phase 2). Pattern match "(?:<[[:space:]]* 
(?:script|about|applet|activex|chrome).* 
(?:script|about|applet|activex|chrome)[[:space:]]*>|activexobject| 
(?:\.add|\@)import|asfunction\:|background-image\:|e(?:cma|xec) 
script|\.fromcharcode|get(?:parentfolder|specialfolder)|iframe |\.i ..." 
at REQUEST_HEADERS:Referer. 
[file "/etc/httpd/modsecurity/10_asl_rules.conf"] [line "146"] [id "340020"] 
[rev "14"] [msg "XSS in referrer and UA headers"] [severity "CRITICAL"] 
[hostname "www.finnrasmussen.dk"] [uri "/demo/anker-body-onload/"] 
[unique_id "50hySsHJI2AAAHiTq1QAAAAB"]
arrow-headline.gif ViewList (100)
Dato Kortart FI-nummer Betaler id Gebyr DKK Beløb DKK Funktion
21-05-2012 71 70000000 1000010000   0 Detaljer
21-05-2012 71 70000001 1000010001   1 Detaljer
21-05-2012 71 70000002 1000010002   2 Detaljer
21-05-2012 71 70000003 1000010003   3 Detaljer
21-05-2012 71 70000004 1000010004   4 Detaljer
21-05-2012 71 70000005 1000010005   5 Detaljer
21-05-2012 71 70000006 1000010006   6 Detaljer
22-05-2012 71 70000007 1000010007   7 Detaljer
22-05-2012 71 70000008 1000010008   8 Detaljer
22-05-2012 71 70000009 1000010009   9 Detaljer
22-05-2012 71 70000010 1000010010   10 Detaljer
22-05-2012 71 70000011 1000010011   11 Detaljer
22-05-2012 71 70000012 1000010012   12 Detaljer
22-05-2012 71 70000013 1000010013   13 Detaljer
22-05-2012 71 70000014 1000010014   14 Detaljer
22-05-2012 71 70000015 1000010015   15 Detaljer
23-05-2012 71 70000016 1000010016   16 Detaljer
23-05-2012 71 70000017 1000010017   17 Detaljer
23-05-2012 71 70000018 1000010018   18 Detaljer
23-05-2012 71 70000019 1000010019   19 Detaljer
23-05-2012 71 70000020 1000010020   20 Detaljer
23-05-2012 71 70000021 1000010021   21 Detaljer
23-05-2012 71 70000022 1000010022   22 Detaljer
23-05-2012 71 70000023 1000010023   23 Detaljer
24-05-2012 71 70000024 1000010024   24 Detaljer
24-05-2012 71 70000025 1000010025   25 Detaljer
24-05-2012 71 70000026 1000010026   26 Detaljer
24-05-2012 71 70000027 1000010027   27 Detaljer
24-05-2012 71 70000028 1000010028   28 Detaljer
24-05-2012 71 70000029 1000010029   29 Detaljer
24-05-2012 71 70000030 1000010030   30 Detaljer
24-05-2012 71 70000031 1000010031   31 Detaljer
24-05-2012 71 70000032 1000010032   32 Detaljer
25-05-2012 71 70000033 1000010033   33 Detaljer
25-05-2012 71 70000034 1000010034   34 Detaljer
25-05-2012 71 70000035 1000010035   35 Detaljer
25-05-2012 71 70000036 1000010036   36 Detaljer
25-05-2012 71 70000037 1000010037   37 Detaljer
25-05-2012 71 70000038 1000010038   38 Detaljer
25-05-2012 71 70000039 1000010039   39 Detaljer
25-05-2012 71 70000040 1000010040   40 Detaljer
25-05-2012 71 70000041 1000010041   41 Detaljer
26-05-2012 71 70000042 1000010042   42 Detaljer
26-05-2012 71 70000043 1000010043   43 Detaljer
26-05-2012 71 70000044 1000010044   44 Detaljer
26-05-2012 71 70000045 1000010045   45 Detaljer
26-05-2012 71 70000046 1000010046   46 Detaljer
26-05-2012 71 70000047 1000010047   47 Detaljer
26-05-2012 71 70000048 1000010048   48 Detaljer
26-05-2012 71 70000049 1000010049   49 Detaljer
27-05-2012 71 70000050 1000010050   50 Detaljer
27-05-2012 71 70000051 1000010051   51 Detaljer
27-05-2012 71 70000052 1000010052   52 Detaljer
27-05-2012 71 70000053 1000010053   53 Detaljer
27-05-2012 71 70000054 1000010054   54 Detaljer
27-05-2012 71 70000055 1000010055   55 Detaljer
27-05-2012 71 70000056 1000010056   56 Detaljer
27-05-2012 71 70000057 1000010057   57 Detaljer
27-05-2012 71 70000058 1000010058   58 Detaljer
28-05-2012 71 70000059 1000010059   59 Detaljer
28-05-2012 71 70000060 1000010060   60 Detaljer
28-05-2012 71 70000061 1000010061   61 Detaljer
28-05-2012 71 70000062 1000010062   62 Detaljer
28-05-2012 71 70000063 1000010063   63 Detaljer
28-05-2012 71 70000064 1000010064   64 Detaljer
28-05-2012 71 70000065 1000010065   65 Detaljer
28-05-2012 71 70000066 1000010066   66 Detaljer
28-05-2012 71 70000067 1000010067   67 Detaljer
29-05-2012 71 70000068 1000010068   68 Detaljer
29-05-2012 71 70000069 1000010069   69 Detaljer
29-05-2012 71 70000070 1000010070   70 Detaljer
29-05-2012 71 70000071 1000010071   71 Detaljer
29-05-2012 71 70000072 1000010072   72 Detaljer
29-05-2012 71 70000073 1000010073   73 Detaljer
29-05-2012 71 70000074 1000010074   74 Detaljer
29-05-2012 71 70000075 1000010075   75 Detaljer
30-05-2012 71 70000076 1000010076   76 Detaljer
30-05-2012 71 70000077 1000010077   77 Detaljer
30-05-2012 71 70000078 1000010078   78 Detaljer
30-05-2012 71 70000079 1000010079   79 Detaljer
30-05-2012 71 70000080 1000010080   80 Detaljer
30-05-2012 71 70000081 1000010081   81 Detaljer
30-05-2012 71 70000082 1000010082   82 Detaljer
30-05-2012 71 70000083 1000010083   83 Detaljer
30-05-2012 71 70000084 1000010084   84 Detaljer
31-05-2012 71 70000085 1000010085   85 Detaljer
31-05-2012 71 70000086 1000010086   86 Detaljer
31-05-2012 71 70000087 1000010087   87 Detaljer
31-05-2012 71 70000088 1000010088   88 Detaljer
31-05-2012 71 70000089 1000010089   89 Detaljer
31-05-2012 71 70000090 1000010090   90 Detaljer
31-05-2012 71 70000091 1000010091   91 Detaljer
31-05-2012 71 70000092 1000010092   92 Detaljer
01-06-2012 71 70000093 1000010093   93 Detaljer
01-06-2012 71 70000094 1000010094   94 Detaljer
01-06-2012 71 70000095 1000010095   95 Detaljer
01-06-2012 71 70000096 1000010096   96 Detaljer
01-06-2012 71 70000097 1000010097   97 Detaljer
01-06-2012 71 70000098 1000010098   98 Detaljer
01-06-2012 71 70000099 1000010099   99 Detaljer
triangle.gif

Dansk

Deutch

English (UK)

France

Italy

Norsk

Svensk

English (USA)

 
blank.gif
triangle.gif Copyright @ 1999-2010 www.Finn-Rasmussen.com Powered by myPHP Version (5.3.3-7+squeeze9) 1.11
blank.gif
Valid XHTML 1.0 Strict Valid CSS!