Forum
Question Does ReverseProxy feature still Prevent XSS and SQLi?
Rich G
25 May 2012, 20:53
Hi Hugo,
I have a quick question. Does Hiawatha still prevent exploits when you turn on PreventXSS and PreventSQLi and use the ReverseProxy feature?
I am using a Hiawatha as a "gateway" to an application server to prevent exploits against the app server.
I tested a common SQLi attack and the exploit.log file still remained empty.
Thanks!
RG
Hiawatha version: 8.3
Operating System: CentOS 5 x86_64
I have a quick question. Does Hiawatha still prevent exploits when you turn on PreventXSS and PreventSQLi and use the ReverseProxy feature?
I am using a Hiawatha as a "gateway" to an application server to prevent exploits against the app server.
I tested a common SQLi attack and the exploit.log file still remained empty.
Thanks!
RG
Hiawatha version: 8.3
Operating System: CentOS 5 x86_64
Hugo Leisink
27 May 2012, 10:15
Hmm, good point. At the moment, it doesn't. I'm thinking about releasing 8.3.1 soon in which this is enabled.
Most of my websites are created with Banshee [www.banshee-php.org], which isn't vulnerable for SQL injections. So, I often forget that Hiawatha has protection against it
Most of my websites are created with Banshee [www.banshee-php.org], which isn't vulnerable for SQL injections. So, I often forget that Hiawatha has protection against it
This topic has been closed.
Copyright © by Hugo Leisink. All rights reserved.
Built upon the Banshee PHP framework.
Built upon the Banshee PHP framework.
