On 17/08/11 17:18, Paul McGarry wrote: > > > The "trouble" from my perspective is it's difficult to determine > whether there is some nuance of SQL injection that the rules are > catering to that I'm not seeing. > I know what you mean, but this is the Cookie that triggered ours
"LtpaToken2=X1K3I8jgKO7or" ...in what universe could that be a SQL injection attack? -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
