How to avoid the phpBB worm with Apache Rewrite Engine

Posted on 2009/05/31 by Balazs

This solution was suggested by Raymond Dijkxhoorn on BugTraq:

If you cannot fix it (virtual servers) fast for all your clients you could also try with
something like this:

        RewriteEngine On
        RewriteCond %{QUERY_STRING} ^(.*)echr(.*) [OR]
        RewriteCond %{QUERY_STRING} ^(.*)esystem(.*)
        RewriteRule ^.*$                                -               [F]

We had some vhosts where this worked just fine. On our systems we didnt see any valid
request with echr and esystem, just be gentle with it, it works for me, it could work
for you

About Balazs

View all posts by Balazs →

This entry was posted in PHP and tagged Apache, mod_rewrite. Bookmark the permalink.

NewPush has solutions to fit your business needs. For more than a decade, our focus has been to take on the technical challenges that are the hardest and most time-consumming. Our goal is to free up your resources to focus on the core activities of your business and to drive your business performance. Please visit our main site at newpush.com for more information or call us at +1-303-423-4500.

How to avoid the phpBB worm with Apache Rewrite Engine

About Balazs

Categories