Toggle navigation
Homepage
About
Download
Support
Monitor
Weblog
Forum
Is is possible to exclude files/urls from the sqli protection?
Calle
9 November 2011, 15:38
Hiawatha version: 7.7
Operating System: Ubuntu 11.10
Since some forms are really troublesome it would be good to be secure those and exclude them from the Sqli protection.
Hugo Leisink
9 November 2011, 15:58
No, that's not possible. Is it the multipart forms that are causing problems? If that's the case, please try changing line 39 in session.c to:
{"[\\s'0-9a-z]\\s*--\\s+.+"},
Calle
9 November 2011, 16:16
Should I recompile It after that?
Hugo Leisink
9 November 2011, 16:17
Yes please
And of course, reinstall also.
Calle
9 November 2011, 16:30
Seems to have helped. Thank you! Now there is only problem left and that is that I'm not able to find or manipulate files through $_FILES
Hugo Leisink
10 November 2011, 20:06
And you are when PreventSQLi is not turned on?
This topic has been closed.
Back