[TYPO3-dev] jumpurl generally insecure?
Philipp Gampe
philipp.gampe at typo3.org
Tue Jul 24 17:42:34 CEST 2012
Hi Marc,
Dmitry Dulepov wrote:
> Marc Wöhlken wrote:
>> I just wanted to fetch some opinions on this topic as I can't quite see
>> a) why this should be a general weakness
>> b) how to disable jumpurl completly
>
> The best thing you can do is to look right now at TSRef, where it mentions
> jumpurl :) You will find all answers there.
config.jumpurl_enable = 0
> jumpUrl is a concept where external links are redirected from the
> index_ts.php script, which first logs the URL. This feature is only
> interesting if “config.sys_stat” is used.
Best regards
--
Philipp Gampe – PGP-Key 0AD96065 – TYPO3 UG Bonn/Köln
Documentation – linkvalidator
TYPO3 .... inspiring people to share!
More information about the TYPO3-dev
mailing list