New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Just copy any shell script it blocks it, pretty frustrating when you are trying to help someone, it has been doing it for years.
It's understandable why it blocks those things but on a technical forum like this it presents a problem.
Compromised sites can have a script on them that accepts commands via HTTP headers, POST etc, often obfuscated by base64 or similar.
A simple but hackish solution is to obfuscate the POST data for posts here and convert back on the back end, like converting to a hex string. Not sure how adaptable CF's blocking is but if it isn't then you'd end up having to do a hack like that.
a simple solution is to disable WAF
Hey now YOU can fix it :-)
Can we include it just crashing randomly tonight on ssl cert issues?
Considering how old this Vanilla install is, the WAF might be the only thing shielding this dump from a primitive SQL injection attack.
I am seeing more broken connection between CF and origin this few days. I didn't see for last few weeks often.
Unless there're certain rules enforced in CF's WAF, that will not catch or filter any normal activities. I don't think that's caused by WAF.
I didn't take a screenshot and I don't remember the details, but the last case I experienced was just like two days ago with the netcup thread. Funnily, it seems, it was just one (typically the current last) page that failed to load. The error code was 522 (I'm not 100% but pretty sure about the code).
@jbiloh
If it is really helpful for you let us know and I'll take notes or make screenshots when it happens again.
I get connection reset by peer sort of errors and even that's not so frequent.