My Oracle Support Banner

Preventing Cross Site Scripting Attacks in Oracle iPlanet Webserver 7.0 (Doc ID 1457522.1)

Last updated on FEBRUARY 25, 2019

Applies to:

Oracle iPlanet Web Server - Version 7.0 to 7.0 [Release 7.0]
Information in this document applies to any platform.

Symptoms

On Oracle iPlanet Web Server 7.0, 

while configuring obj.conf to prevent cross site scripting by following Oracle iPlanet Web Server 7.0.9 Administrator's Configuration File Reference Guide - Chapter 7 Controlling Access to Your Server - Preventing Cross Site Scripting Attacks https://docs.oracle.com/cd/E19146-01/821-1828/ghyzd/index.html

The following error might occur:



STEPS
-----------------------
1. Insert this filter in obj.conf to prevent xss cross-site scripting attack

Input fn="insert-filter" method="POST" filter="sed-request" sed="s/(|>)/\\>/gi"


Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.