Compare commits
2 Commits
stable
...
projet6062
Author | SHA1 | Date |
---|---|---|
Patrick Marchand | 0e98f24f42 | |
Patrick Marchand | 49aff3892c |
|
@ -18,7 +18,7 @@ SecUploadKeepFiles Off
|
|||
# default action
|
||||
SecDefaultAction "log,auditlog,deny,status:406,phase:2"
|
||||
|
||||
SecAuditEngine RelevantOnly
|
||||
SecAuditEngine Off
|
||||
#SecAuditLogRelevantStatus "^[45]"
|
||||
# use only one log file
|
||||
SecAuditLogType Serial
|
||||
|
@ -39,10 +39,12 @@ SecTmpDir /tmp
|
|||
# RULES
|
||||
#########
|
||||
|
||||
# File name
|
||||
SecRule REQUEST_FILENAME "modsecuritytest1" "id:1"
|
||||
# Complete URI
|
||||
SecRule REQUEST_URI "modsecuritytest2" "id:2"
|
||||
SecRule REQUEST_FILENAME "(?:n(?:map|et|c)|w(?:guest|sh)|cmd(?:32)?|telnet|rcmd|ftp)\.exe" "id:3"
|
||||
Include /usr/share/modsecurity-crs/owasp-crs.load
|
||||
|
||||
|
||||
# Removed because it does not play well with apache-itk
|
||||
# Can be removed when modsecurity 2.9.3 hits debian
|
||||
# See https://github.com/SpiderLabs/ModSecurity/issues/712
|
||||
SecRuleRemoveById "910000-910999"
|
||||
|
||||
</IfModule>
|
||||
|
|
Loading…
Reference in New Issue