diff options
Diffstat (limited to 'config/default.rules')
| -rw-r--r-- | config/default.rules | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/config/default.rules b/config/default.rules index 2fa77d5..a3e779b 100644 --- a/config/default.rules +++ b/config/default.rules | |||
| @@ -112,6 +112,10 @@ sp.disable_function.function("curl_setopt").param("value").value("2").allow(); | |||
| 112 | sp.disable_function.function("curl_setopt").param("option").value("64").drop().alias("Please don't turn CURLOPT_SSL_VERIFYCLIENT off."); | 112 | sp.disable_function.function("curl_setopt").param("option").value("64").drop().alias("Please don't turn CURLOPT_SSL_VERIFYCLIENT off."); |
| 113 | sp.disable_function.function("curl_setopt").param("option").value("81").drop().alias("Please don't turn CURLOPT_SSL_VERIFYHOST off."); | 113 | sp.disable_function.function("curl_setopt").param("option").value("81").drop().alias("Please don't turn CURLOPT_SSL_VERIFYHOST off."); |
| 114 | 114 | ||
| 115 | # Ensure that file:// protocol is not allowed in CURL | ||
| 116 | sp.disable_function.function("curl_setopt").param("value").value_r("file://").drop().alias("file:// protocol is disabled"); | ||
| 117 | sp.disable_function.function("curl_init").param("url").value_r("file://").drop().alias("file:// protocol is disabled"); | ||
| 118 | |||
| 115 | # File upload | 119 | # File upload |
| 116 | # On old PHP7 versions | 120 | # On old PHP7 versions |
| 117 | #sp.disable_function.function("move_uploaded_file").param("destination").value_r("\\.ph").drop(); | 121 | #sp.disable_function.function("move_uploaded_file").param("destination").value_r("\\.ph").drop(); |