Usman Waheed | 19 Mar 18:43 2012
Picon

PCRE limits exceeded - mod security execution error(s).

Hi,

I am testing an application that is running apache mod sec 2.6.3 on my  
test server for a SQL injection and i notice errors that look like below  
in the /var/log/apache/error.log:

[Mon Mar 19 16:24:21 2012] [error] [client 41.212.111.33] ModSecurity:  
Rule 7f3e6a934928 [id "950901"][file  
"/etc/apache2/modsecurity/modsecurity_crs_41_sql_injection_attacks.conf"][line  
"59"] - Execution error - PCRE limits exceeded (-8): (null). [hostname  
"test=t01"] [uri "/account/signup"] [unique_id "T2ddtdXs0DQAADJfFnsAAAAG"]

I found some postings that recommend:

Create a file pcre_modsecurity_exceeded_limits.conf and insert following  
lines in it.

SecPcreMatchLimit 150000
SecPcreMatchLimitRecursion 150000

Include “/usr/local/apache/conf/pcre_modsecurity_exceeded_limits.conf” in  
the modsecurity.conf

I have the following version of pcre loaded:

PCRE version 8.02 2010-03-19
Compiled with
   UTF-8 support
   Unicode properties support
   Newline sequence is LF
(Continue reading)


Gmane