Breaking SAP Portal - Proidea
Breaking SAP Portal - Proidea
Breaking SAP Portal - Proidea
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Malicious file upload: Prevention<br />
• Enable File Extension and Size Filter.<br />
• System Administration → System Configuration → Content Management →<br />
Repository → Filters → Show Advanced Options → File Extension and Size Filter<br />
• you must select either the All repositories parameter, or at least one repository<br />
from the repository list in the Repositories parameter. Otherwise, the filter is not<br />
created.<br />
• Enable Malicious Script Filter.<br />
• System Administration → System Configuration → Content Management →<br />
Repository → Filters → Show Advanced Options → Malicious Script Filter<br />
• the filter also detects executable scripts in files that are being modified and<br />
encodes them when they are saved<br />
• enable Forbidden Scripts. Comma-separated list of banned script tags that will<br />
be encoded when the filter is applied.<br />
• enable the Send E-Mail to Administrator option.