Activate more features in the default rules

author: jvoisin 2018-07-23 14:15:37 +0200
committer: jvoisin 2018-07-23 14:15:37 +0200
commit: 750d417412323758871be0c9c43ff65a31071cc4 (patch)
tree: 79f44df89dcc51b507ad9fafd3943029f09a62bd /config/default.rules
parent: 44e47ba740c8207edb510dbdb6b1fbbbd2a65c5e (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/config/default.rules b/config/default.rules
index 4e6a27f..a21a6cf 100644
--- a/config/default.rules
+++ b/config/default.rules
@@ -1,3 +1,9 @@
+# Harden the PRNG
+sp.harden_random.enable();
+# Disabled XXE
+sp.disable_xxe.enable();
 # Harden the `chmod` function
 sp.disable_function.function("chmod").param("mode").value_r("^[0-9]{2}[67]$").drop();
author	jvoisin	2018-07-23 14:15:37 +0200
committer	jvoisin	2018-07-23 14:15:37 +0200
commit	750d417412323758871be0c9c43ff65a31071cc4 (patch)
tree	79f44df89dcc51b507ad9fafd3943029f09a62bd /config/default.rules
parent	44e47ba740c8207edb510dbdb6b1fbbbd2a65c5e (diff)

diff --git a/config/default.rules b/config/default.rules index 4e6a27f..a21a6cf 100644 --- a/config/default.rules +++ b/config/default.rules
@@ -1,3 +1,9 @@
		1	# Harden the PRNG
		2	sp.harden_random.enable();
		3
		4	# Disabled XXE
		5	sp.disable_xxe.enable();
		6
1	# Harden the `chmod` function	7	# Harden the `chmod` function
2	sp.disable_function.function("chmod").param("mode").value_r("^[0-9]{2}[67]$").drop();	8	sp.disable_function.function("chmod").param("mode").value_r("^[0-9]{2}[67]$").drop();
3		9