如何在Apache for svn中阻止跨帧脚本
我已经通过Linux 6.6上的Apache 2.4.18配置了SVN。接下来,我必须为我的svn url禁用跨帧脚本。SVN url类似于。我已经编译了mod_security2.so并复制到/modules目录,然后加载到virtualHost中,如下所示如何在Apache for svn中阻止跨帧脚本,apache,svn,xss,mod-security2,Apache,Svn,Xss,Mod Security2,我已经通过Linux 6.6上的Apache 2.4.18配置了SVN。接下来,我必须为我的svn url禁用跨帧脚本。SVN url类似于。我已经编译了mod_security2.so并复制到/modules目录,然后加载到virtualHost中,如下所示 LoadFile /usr/lib64/libxml2.so LoadFile /usr/lib64/liblua-5.1.so LoadModule security2_module modules/mod_security2.so
LoadFile /usr/lib64/libxml2.so
LoadFile /usr/lib64/liblua-5.1.so
LoadModule security2_module modules/mod_security2.so
httpd-vhosts.conf
<VirtualHost *:80>
ServerAdmin email@domain.com
DocumentRoot "/var/local/apache/httpd2.4.18/htdocs"
ServerName servername.fqdn.com
# For http to https redirect
Redirect / https://servername
TraceEnable off
RewriteEngine on
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
RewriteRule .* - [F]
SecRuleEngine On
#SecFilterEngine On
#SecFilterForceByteRange 32 126
#SecFilterScanPOST On
#SecFilter "<( |\n)*script"
SecRequestBodyAccess On
SecResponseBodyAccess On
ErrorLog "logs/error_log"
CustomLog "logs/access_log" common
</VirtualHost>
LoadFile/usr/lib64/libxml2.so
LoadFile/usr/lib64/liblua-5.1.so
LoadModule security2_模块模块/mod_security2.so
httpd-vhosts.conf
服务器管理员email@domain.com
DocumentRoot“/var/local/apache/httpd2.4.18/htdocs”
ServerName ServerName.fqdn.com
#用于http到https重定向
重定向/https://servername
可追溯的
重新启动发动机
重写cond%{REQUEST_METHOD}^(跟踪|跟踪)
重写规则。*-[F]
SecRuleEngine打开
#过滤引擎打开
#SecFilterForceByteRange 32 126
#SecFiltersCanPoston
#SecFilter“所有这些不受支持的命令都是ModSecurity v1命令,并且已经为ModSecurity2完全重写
您需要的规则如下所示:
SecRule ARGS "<( |\n)*script" "phase:2,id:1234,deny"
<script
SecRule ARGS“您只能通过配置mod_headers@Joao来完成此操作-在响应头中,我将X-Frame-Options视为SAMEORIGIN。这是对的吗。您知道在apache命令行中测试此功能的选项吗。我想你解决了这个问题。看看这是否有助于理解x帧选项。这对我来说是新的。这是个好主意。
< script
<
script