diff options
| author | Ben Fuhrmannek | 2022-01-11 19:58:46 +0100 |
|---|---|---|
| committer | Ben Fuhrmannek | 2022-01-11 19:58:46 +0100 |
| commit | dd8f34013ea55eb8e6f4e3e4de9c9dc16e02eb9c (patch) | |
| tree | 45ebb24062e7f9997cd15fa8b0ac6312dd4df7cc | |
| parent | bbba4e72b2234e2b527c9cfdc73018192ea2ab29 (diff) | |
make xxe protection conditional in default rules
Diffstat (limited to '')
| -rw-r--r-- | config/default.rules | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/config/default.rules b/config/default.rules index 2de703b..7cb18b5 100644 --- a/config/default.rules +++ b/config/default.rules | |||
| @@ -6,8 +6,10 @@ | |||
| 6 | # Harden the PRNG | 6 | # Harden the PRNG |
| 7 | sp.harden_random.enable(); | 7 | sp.harden_random.enable(); |
| 8 | 8 | ||
| 9 | # Disabled XXE | 9 | # Enable XXE protection |
| 10 | @condition extension_loaded("xml"); | ||
| 10 | sp.xxe_protection.enable(); | 11 | sp.xxe_protection.enable(); |
| 12 | @end_condition; | ||
| 11 | 13 | ||
| 12 | # Global configuration variables | 14 | # Global configuration variables |
| 13 | # sp.global.secret_key("YOU _DO_ NEED TO CHANGE THIS WITH SOME RANDOM CHARACTERS."); | 15 | # sp.global.secret_key("YOU _DO_ NEED TO CHANGE THIS WITH SOME RANDOM CHARACTERS."); |