mod_taint is a new module to apply Perl-style taint checking to untrusted data. It's a lot smaller and simpler than mod_security, but offers a useful tool to protect a range of applications. It's now up-and-running and working well for me, and ready for wider testing and feedback. I've put the module together with documentation on my apache.org space at: http://people.apache.org/~niq/mod_taint.html http://people.apache.org/~niq/mod_taint.c Feedback welcome. -- Nick Kew --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|