标签: apache security url-rewriting
在linux环境中配置apache以避免目录遍历漏洞。受影响的网址如下所示
https://www.example.com/datamap/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/etc/passwd
要解决此问题,请使用404配置重写
textview
无法修复。帮助我出错的地方。
答案 0 :(得分:1)
RewriteEngine on RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule ^(.*)$ index.php?url=$1 [QSA,L]