Support » Plugin: iThemes Security (formerly Better WP Security) » Clashing with Pipe/Equals sign in Google ad campaign (Nginx)

  • Example Google javascript:

    <a href=".." onclick="_gaq.push(['_link', 'http://www.mysite.com.com']); return false;">click me</a>

    The URL is altered to include pipes:

    ...&__utmz=2222111111.144444493.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)

    Which I believe will trigger Nginx to respond 403 for logged out users from this setting:

    if ($args ~* "(\[|\]|\(|\)|<|>|ê|\"|;|\?|\*|=$)"){
            set $susquery 1;
        }

    Is there a way round this, or can you describe what threats this section protects from (so that it can be threat evaluated).

    Thanks!

    http://wordpress.org/extend/plugins/better-wp-security/

  • The topic ‘Clashing with Pipe/Equals sign in Google ad campaign (Nginx)’ is closed to new replies.