diff options
Diffstat (limited to 'doc/source/config.rst')
| -rw-r--r-- | doc/source/config.rst | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/doc/source/config.rst b/doc/source/config.rst index 10b0afd..63ddf7b 100644 --- a/doc/source/config.rst +++ b/doc/source/config.rst | |||
| @@ -293,14 +293,15 @@ It can either be ``enabled`` or ``disabled`` and can be used in ``simulation`` m | |||
| 293 | sp.upload_validation.script("/var/www/is_valid_php.py").enable(); | 293 | sp.upload_validation.script("/var/www/is_valid_php.py").enable(); |
| 294 | 294 | ||
| 295 | 295 | ||
| 296 | disable_xxe | 296 | xxe_protection |
| 297 | ^^^^^^^^^^^ | 297 | ^^^^^^^^^^^ |
| 298 | 298 | ||
| 299 | :ref:`disable_xxe <xxe-feature>`, enabled by default, will prevent XXE attacks by disabling the loading of external entities (``libxml_disable_entity_loader``) in the XML parser. | 299 | :ref:`xxe_protection <xxe-feature>`, disabled by default, will prevent XXE attacks by disabling the loading of external entities (``libxml_disable_entity_loader``) in the XML parser. |
| 300 | 300 | ||
| 301 | :: | 301 | :: |
| 302 | 302 | ||
| 303 | sp.disable_xxe.enable(); | 303 | sp.xxe_protection.enable(); |
| 304 | sp.xxe_protection.disable(); | ||
| 304 | 305 | ||
| 305 | 306 | ||
| 306 | Whitelist of stream-wrappers | 307 | Whitelist of stream-wrappers |