Re: Website Hacked
Posted: Tue Sep 25, 2007 4:26 pm
Hello,
please notice ALL offending URI contain a double slash. Double slash URI pattern filtering prevents these attacks whatever your CMSms version.
Short to-be-tuned hardening example :
The dev team is very responsive, bugfixes are provided. Dear Users, always run current stable official version (back up and upgrade).
Pierre M.
please notice ALL offending URI contain a double slash. Double slash URI pattern filtering prevents these attacks whatever your CMSms version.
Short to-be-tuned hardening example :
Code: Select all
RewriteCond %{REQUEST_URI} \/\/
RewriteRule ^.*$ - [F,L]
Pierre M.