nt-uri-clean
Applicable in PathCheck-class directives.
Windows Only. The nt-uri-clean function denies access to any resource whose physical path contains \.\, \..\ or \ (these are potential security problems).
Parameters
The following table describes parameters for the nt-uri-clean function.
Table 4–26 nt-uri-clean Parameters|
Parameter |
Description |
|---|---|
|
If present, allows tilde (~) characters in URIs. This is a potential security risk on the Windows platform, where longfi~1.htm might reference longfilename.htm but does not go through the proper ACL checking. If present, “//” sequences are allowed. |
|
|
If present, “//” sequences are allowed. |
|
|
bucket |
(Optional) Common to all obj.conf functions. |
Example
PathCheck fn=nt-uri-clean
|
See Also
- © 2010, Oracle Corporation and/or its affiliates