1# iexploder configuration file 2 3# path to the data files (css-properties, css-values, etc.) 4mangle_data_path: . 5 6# This is only used by the webserver.py, not the cgi. 7access_log_path: ../access.log 8 9# Some basic tuning for maximum crashing power. 10html_tags_per_page: 100 11attributes_per_html_tag_max: 15 12properties_per_style_max: 15 13attributes_per_style_property_max: 3 14# URL's loaded by img/src/etc. get a max of this many fuzzed headers 15headers_per_page_max: 2 16 17# How many combinations should we try when generating subtests 18subtest_combinations_max: 5 19 20# How many lines wide should we start our subtesting at? Increase for faster/looser 21# subtesting. 22initial_subtest_width: 1 23 24# How much garbage do we send the client? If you really want to explore 25# buffer overflows, consider making this a much larger size (16K+) 26buffer_overflow_length: 1025 27max_garbage_text_size: 257 28 29# These tags are X% likely to overwrite one randomly selected tag per page load 30favor_html_tags: 31 script: 65 32 style: 75 33 img: 90 34 video: 90 35 object: 90 36 embed: 90 37 38# Exclude certain tag.parameter or tag.style.attribute combinations for a given regexp. 39# An asterisk is allowed in the first field. Valid forms include: 40# 41# img.onloadbanana: "Bananarama 3000" 42# dir.style.-webkit-banana-rule: "BananaWebKit\/532\.9 |BananaTron5K" 43# *.style.-webkit-banana-rule: "BananaWebKit\/532\.9 |BananaTron5K" 44 45exclude: 46 # Hangs the test waiting for a prompt sometimes 47 iframe.src: "Firefox\/3.6" 48 49 # http://code.google.com/p/chromium/issues/detail?id=56207 50 *.style.content: "Chrome\/7\.0\.5" 51 52 # http://code.google.com/p/chromium/issues/detail?id=56208 53 progress.style.font: "Chrome\/7\.0\.5" 54 55