Developer forum

Forum » Dynamicweb 9.0 Upgrade issues » Why denying .php requests in DW9?

Why denying .php requests in DW9?

E-mail notifications
Kevin Steffer
Kevin Steffer
Reply
Posted on 06/09/2017 08:52:05

Web.config ships this:

<security>
      <requestFiltering>
        <requestLimits maxAllowedContentLength="2048000000" />
    <denyUrlSequences>
     <add sequence=".php" />
    </denyUrlSequences>
      </requestFiltering>
    </security>

Is there any special concern we should be aware of when removing this because we want to able to have 301 redirect-maps that has .php URLs?


Replies

 
Nicolai Pedersen
Posted on 06/09/2017 09:21:08
Reply
This post has been marked as an answer

1.2 billion requests to /wp_login.php on all sites. All them bots... You can just remove it if needed.

BR Nicolai

Votes for this answer: 2
 
Kevin Steffer
Kevin Steffer
Posted on 06/09/2017 10:15:19
Reply

OK, thanks!

 

You must be logged in to post in the forum