PDA

View Full Version : Osc_Sec



michael_s
06-16-2011, 05:11 AM
Whats New?
- Set $banipaddress and $emailenabled in osc.php by default to disabled.
- Fix up of scrubster function
- Added feature to test post strings in reverse against the blacklist
- Removed the REQUEST filtering as this is aptly covered in POST and GET
- Rewrite of much of the main sections moving much of the code into functions
- Removed the emtee() function as it is not needed
- osC_Sec now checks for reversed malicious GET request strings
- Further refinement of the GET filtering (based closer the FWR_MEDIAs concept with additions)
- Fine tuning of the way $PHP_SELF is set.

NOTE: With this upgrade you will NOT need to update osc.php. Just replace the osc_sec.php in this package with the one on your site and you are up to date.

This will be the final update for osC_Sec (barring any discovered bugs)

More... (http://addons.oscommerce.com/info/7834)