----- Nick Kew <nick@xxxxxxxxxxxx> wrote: > mod_taint is a new module to apply Perl-style taint checking > to untrusted data. It's a lot smaller and simpler than > mod_security, but offers a useful tool to protect a range > of applications. > > It's now up-and-running and working well for me, and ready > for wider testing and feedback. > > I've put the module together with documentation on my > apache.org space at: Why not put it in svn in httpd's sandbox? > http://people.apache.org/~niq/mod_taint.html > http://people.apache.org/~niq/mod_taint.c does it make more sense to use it on a reverse proxy or on the backend in question? > Feedback welcome. > > -- > Nick Kew > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > -- Igor GaliÄ Tel: +43 (0) 664 886 22 883 Mail: i.galic@xxxxxxxxxxxxxx URL: http://brainsware.org/ --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|