Hi there,
I have a problem with out.php url containing "http:/" anywhere in the middle of it. modsecurity is blocking those kind of urls by redirecting to 403, then 404 page. This is some kind of code injection protection.
http://www.mysite.com/tp/out.php?link=click&url=http%3A//www.somesite.com%3D - this kind of url is not working with the modsecurity enabled.
Since disabling modsecurity is not an option on my host, is there any way to change redirection url to //www.somesite.com%3D and edit the out.php script?
http://www.mysite.com/tp/out.php?link=click&url=www.somesite.com%3Dhttp://www.mysite.com/tp/out.php?link=click&url=//www.somesite.com%3D - this kind of redirection will work.
Since there's a problem with modsecurity, which is an Apache module, php could use http:/ in the redirection script (not allowed to visitors in the browser url only), so I guess it's possible to write some kind of php "wrapper" which will include out.php with the correct settings, so the user could easily use outwrapper.php instead of out.php for redirection url, all depending on their host settings.
This is one of the possible workaround.
Since I had in mind to install your script on like dozen of domains, I will probably buy the license for all of them soon. Is it possible to contact you and discuss about potential solution?
Thanks!
