An easy way to block the latest phpbb exploit - using modsecurity

Hello All,

I have been hit hard by the latest phpbb exploit and needed some quick security. I constucted a chained rule which I believe very efficient.

Code: 
	SecFilter "viewtopic\.php\?" chain
	SecFilter "chr\(([0-9]{1,3})\)"	"deny,log"
If you find this usefull please let me know your comments.

 

 

 

 

Top