headers
Dan Rossi | 1 Dec 2006 04:54
Favicon

mod sec 1.9 and apache 1.3

Hi, ive put mod sec 1.9 on our apache 1.3 server and moved some rules over from our 1.8 install. How do i now put the server in detection mode ?

I left the SecAuditEngine to On but turned off SecFilterEngine Off, it doesnt log anything, when i turned on SecFilterEngine On even with this default action i get denials, we just want to detect and monitor so we can clean up the false positives as alot of scripts pass dirty data in query strings on these servers like urls, etc

SecFilterDefaultAction "allow,log,status:403"
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
mod-security-users mailing list
mod-security-users <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-users
Permalink | Reply |
headers
Ivan Ristic | 6 Dec 2006 19:18
Picon

Re: mod sec 1.9 and apache 1.3

On 12/1/06, Dan Rossi <spam <at> electroteque.org> wrote:
>
>  Hi, ive put mod sec 1.9 on our apache 1.3 server and moved some rules over
> from our 1.8 install. How do i now put the server in detection mode ?

It is not possible. ModSecurity 1.9.x does not have that option.

--

-- 
Ivan Ristic

-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
Permalink | Reply |

Gmane