With WF WAF do I still need script injection rules in htaccess?
-
I had the following in my htaccess, added manually years ago, do I still need it even while using Wordfence WAF? Am trying to clean up and shorten my htaccess.
#following is to prevent script injection security violation
Options +FollowSymLinks
RewriteEngine On
RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
RewriteRule ^(.*)$ index.php [F,L]Thanks for any info. MTN
- The topic ‘With WF WAF do I still need script injection rules in htaccess?’ is closed to new replies.
