Refactor a bit our rules

author: jvoisin 2018-02-22 10:53:15 +0100
committer: jvoisin 2018-02-22 10:53:15 +0100
commit: 4ce02663339b6b0976b69f041904b8610dd90cea (patch)
tree: 413f8689a2ba8d8fa09da6825220a4ad22ee832b /config/default.rules
parent: 696ebc4ae68f4c7c2b803c917de365b98621b3a8 (diff)
1 files changed, 0 insertions, 1 deletions
diff --git a/config/default.rules b/config/default.rules
index 88398c1..b52ae4c 100644
--- a/config/default.rules
+++ b/config/default.rules
@@ -1,6 +1,5 @@
 # Harden the `chmod` function
 sp.disable_function.function("chmod").param("mode").value_r("^[0-9]{2}[67]$").drop();
-sp.disable_function.function("chmod").param("mode").value_r("o\\+w$").drop();
 # Prevent various `mail`-related vulnerabilities
 sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop();
author	jvoisin	2018-02-22 10:53:15 +0100
committer	jvoisin	2018-02-22 10:53:15 +0100
commit	4ce02663339b6b0976b69f041904b8610dd90cea (patch)
tree	413f8689a2ba8d8fa09da6825220a4ad22ee832b /config/default.rules
parent	696ebc4ae68f4c7c2b803c917de365b98621b3a8 (diff)

diff --git a/config/default.rules b/config/default.rules index 88398c1..b52ae4c 100644 --- a/config/default.rules +++ b/config/default.rules
@@ -1,6 +1,5 @@
1	# Harden the `chmod` function	1	# Harden the `chmod` function
2	sp.disable_function.function("chmod").param("mode").value_r("^[0-9]{2}[67]$").drop();	2	sp.disable_function.function("chmod").param("mode").value_r("^[0-9]{2}[67]$").drop();
3	sp.disable_function.function("chmod").param("mode").value_r("o\\+w$").drop();
4		3
5	# Prevent various `mail`-related vulnerabilities	4	# Prevent various `mail`-related vulnerabilities
6	sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop();	5	sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop();