Home > Developer > Web Develop

Apache about mod_rewrite encountering a special symbol such as%2f or%5c (forward and backward slash) causing URL rewrite to fail with 404 problem

Source: Internet
Author: User
Tags urlencode
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

. htaccess file

<ifmodule mod_rewrite.c>%{request_filename}-%{request_filename}-^ (. *) $ index.php/$1 [Qsa,pt,L]</IfModule>

Http://localhost/Application/Home/Index/index/url/http%3A%2F%2Fwww.domain.com%2Fpage%2F

When accessing the link above, the 404 is always present, and the rewrite is invalid.

http://localhost/Application/Home/Index/index/url/http://www.domain.com/page/

My local environment has been using the XAMPP, the server Nginx no problem, but Apache is very silent, always 404, replaced by the original, do not go through the urlencode but can open the page normally

Online search for half a day, and finally found the reason:

When%2f (/) or%5c (\) appears in the URL and path_info, it is considered an illegal request and Apache will return directly to the "404 (Not Found)" error.

In other words, Apache rejects the request directly before calling the Mod_proxy or mod_rewrite module, giving a 404 error.

This is done primarily to prevent CGI security vulnerabilities, especially if the script uses path_info but does not do a security filtering operation, it is easy to inject vulnerabilities.

There are two workarounds, the first of which is simpler, but requires the permissions of the server operation:

First, modify the configuration of the site virtual directory

<virtualhost *:80>    allowencodedslashes    on "d:/htdocs/localhost"    ServerName localhost</VirtualHost>

Add Allowencodedslashes in the configuration to restart the service after the sentence

Second, multiple UrlEncode

Links can be urlencode multiple times, usually two times, or three times there will be no problem.

I did a test and found it had to be three times to succeed.

Http://localhost/Application/Home/Index/index/url/http%25253A%25252F%25252Fwww.domain.com%25252Fpage%25252F

I feel this method is not very practical, the change is too big

Apache about mod_rewrite encountering a special symbol such as%2f or%5c (forward and backward slash) causing URL rewrite to fail with 404 problem

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
how to rewrite url php forward to url html forward to url how to use url rewrite apache rewrite http to https and or logic symbol regex forward slash

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More