Apache dispatcher rules not rejecting /.json;%0aa.css

mirza_akram

20-04-2020

I am unable to block/reject /.json;%0aa.css

The error I get in dispatcher error.log is

The given path is misformatted or contained invalid characters: Cannot map GET /.json;%0aa.css

Although I am able to block /.json as I dont get any error for this.

I used ;%0aa.css with other URLs but they went ahead without any issue.

So my question is how can I block/reject /.json;%0aa.css as it is printing some output on browser.

Dispatcher dispatcher.any

Accepted Solutions (1)

Accepted Solutions (1)

a74048191r

21-04-2020

@mirza_akram 

is the filter file using /glob matchers for the extensions like this?

/0041 { /type "allow" /glob "* *.css *"   }  # enable css

 

if so, try this:

/0041 { /type "allow" /extension "css"   }  # enable css

 

if that fixes the issue, the glob matchers for all the extensions can be replaced with:
/0010 { /type "allow" /extension '(css|eot|gif|ico|jpeg|jpg|js|gif|pdf|png|svg|swf|ttf|woff|woff2|html)' /path "/content/*" } ## disable this rule to allow mapped content only

 

Answers (1)

Answers (1)

ArpitVarshney

MVP

21-04-2020

@mirza_akram 

Could you try adding the below rule in filter section of your web server configuration :

{ /type "deny" /glob "GET *.json*" }

 

Hopefully, this should work.

 

Regards,

Arpit