On Thu, Sep 10, 2020 at 10:16 AM Ken Fallon wrote:
> On 2020-09-10 16:08, Roan Horning wrote:
>
> > Would a more generic
> > solution be to modify the sanitize function to just drop invalid
> > parameters, log as potential attack, and then do a redirect from php
> > with just the valid
On 2020-09-10 16:08, Roan Horning wrote:
> Would a more generic
> solution be to modify the sanitize function to just drop invalid
> parameters, log as potential attack, and then do a redirect from php
> with just the valid parameters, or just show the page using the
> validated parameters?
>
I
On Thu, Sep 10, 2020 at 7:59 AM Ken Fallon wrote:
> I applied a rewrite rule as shown here
>
> https://blog.paranoidpenguin.net/2018/12/how-to-remove-facebooks-fbclid-parameter-using-mod_rewrite-on-apache-2-4/
>
> So now facebook links will work.
>
> The biggest issues I see using rewrite rules
Excellent. I think this is an excellent, very specific solution.
On 9/10/2020 07:58, Ken Fallon wrote:
I applied a rewrite rule as shown here
https://blog.paranoidpenguin.net/2018/12/how-to-remove-facebooks-fbclid-parameter-using-mod_rewrite-on-apache-2-4/
So now facebook links will work.
I applied a rewrite rule as shown here
https://blog.paranoidpenguin.net/2018/12/how-to-remove-facebooks-fbclid-parameter-using-mod_rewrite-on-apache-2-4/
So now facebook links will work.
>> Wouldn't accepting parameters from others pose a security problem? I
>> tend to think it expands the