我不能为我的生活读正则表达。
任何人都有一个秒来帮助我弄清楚为什么mod_security会在我的主机上次更新时突然被触发?
我收到此mod_security错误:
消息:代码406拒绝访问(阶段2)。 REQUEST_HEADERS:Cookie中的模式匹配“
\b(\d+) ?= ?\1\b|[\'"](\w+)[\'"] ?= ?[\'"]\2\b”。 [file“/usr/local/apache/conf/modsec2.user.conf”] [line“94”] [id“959901”] [msg“SQL Injection Attack”] [data“1 = 1”] [严重程度“ CRITICAL“] [tag”WEB_ATTACK / SQL_INJECTION“]
以下是生成此错误的其中一个Cookie:
Cookie:pmr = 9d800ab159baf3962d1c777225b4b632; pmr_referrer = HTTP%3A%2F%2Frateyourmusic.com%2Fadmin%2Fcoraq%2F%3F1%3D1%26status%3DW%26show%3D10%26start%3D7020; __utma = 229707933.920390620.1326769663.1326769663.1326769663.1; __utmb = 229707933.1.10.1326769663; __utmc = 229707933; __utmz = 229707933.1326769663.1.1.utmcsr = rateyourmusic.com | utmccn =(引荐)| utmcmd =转诊| utmcct = /管理/ corq /
这是否触发因为“admin”在cookie ???
中这是另一个......
Cookie:ui-tabs-1 = 1; superBAGUS = af14474b9bcc7ec3ae436e58ba172520; superBAGUS_referrer = ...; superBAGUS_admin = 2%3A747167a9cd89703dbfafe3c7a5c523b4;艾科= acco_1; superBAGUS_adviews = .2576.2580 .; __utma = 10910262.1479346800.1326871079.1326871079.1326873539.2; __utmb = 10910262.10.8.1326873800604; __utmc = 10910262; __utmz = 10910262.1326871079.1.1.utmcsr =(直接)| utmccn =(直接)| utmcmd =(无)
这是否触发因为“ui-tabs-1 = 1”看起来像1 = 1注射???
这种模式究竟匹配什么?