diff options
Diffstat (limited to 'config')
| -rw-r--r-- | config/default.rules | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/config/default.rules b/config/default.rules index c528191..3e82ae3 100644 --- a/config/default.rules +++ b/config/default.rules | |||
| @@ -45,10 +45,12 @@ sp.cookie.name("PHPSESSID").samesite("lax"); | |||
| 45 | @end_condition; | 45 | @end_condition; |
| 46 | 46 | ||
| 47 | # Prevent various `mail`-related vulnerabilities | 47 | # Prevent various `mail`-related vulnerabilities |
| 48 | @condition PHP_VERSION_ID < 80300; | 48 | @condition PHP_VERSION_ID < 80000; |
| 49 | sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop(); | 49 | sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop(); |
| 50 | @condition PHP_VERSION_ID >= 80300; | 50 | sp.disable_function.function("mb_send_mail").param("additional_parameters").value_r("\\-").drop(); |
| 51 | sp.disable_function.function("mail").param("additional_params").value_r("\\-").drop(); | 51 | @condition PHP_VERSION_ID >= 80000; |
| 52 | sp.disable_function.function("mail").param("additional_params").value_r("\\-").drop(); | ||
| 53 | sp.disable_function.function("mb_send_mail").param("additional_params").value_r("\\-").drop(); | ||
| 52 | @end_condition; | 54 | @end_condition; |
| 53 | 55 | ||
| 54 | # Since it's now burned, me might as well mitigate it publicly | 56 | # Since it's now burned, me might as well mitigate it publicly |