Search found 1 match
- 06 Aug 2014, 11:54
- Forum: General Discussion (cxs)
- Topic: CXS doesn't prevent exploit uploading
- Replies: 2
- Views: 6183
CXS doesn't prevent exploit uploading
Hello. My modsecurity rule: SecRequestBodyAccess On SecRule FILES_TMPNAMES "@inspectFile /etc/cxs/cxscgi_DOT_sh" \ "log,auditlog,deny,severity:2,phase:2,t:none,id:'1010101'" SecTmpDir /tmp /etc/cxs/cxscgi_DOT_sh: /usr/sbin/cxs --quiet --cgi --mail root --delete --logfile /var/log...