WordPress.org

Ready to get started?Download WordPress

Forums

iThemes Security (formerly Better WP Security)
Clashing with Pipe/Equals sign in Google ad campaign (Nginx) (1 post)

  1. TCBarrett
    Member
    Posted 1 year ago #

    Example Google javascript:

    <a href=".." onclick="_gaq.push(['_link', 'http://www.mysite.com.com']); return false;">click me</a>

    The URL is altered to include pipes:

    ...&__utmz=2222111111.144444493.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)

    Which I believe will trigger Nginx to respond 403 for logged out users from this setting:

    if ($args ~* "(\[|\]|\(|\)|<|>|ê|\"|;|\?|\*|=$)"){
            set $susquery 1;
        }

    Is there a way round this, or can you describe what threats this section protects from (so that it can be threat evaluated).

    Thanks!

    http://wordpress.org/extend/plugins/better-wp-security/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.