ModSecurity
ModSecurity copied to clipboard
owasp-modsecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range o...
## what Add PR's to `CHANGES` ## why PR's weren't added during the merge process.
## what Add handling of Multipart Header's "filename*" (asterisk at the end!) field. ## why mod_security2 (v2) does not handle MULTIPART header's "filename*" field, eg: ``` Content-Disposition: form-data; name="file"; filename*=UTF-8''r%C3%A9sum%C3%A9.pdf...
I installed modsecurity on centos7, operating system version 3.10.0-1160.105.1.el7.x86_64. At the beginning of my operating system gcc version is gcc (GCC) 4.8.5 20150623 (Red Hat 4.8.5-44), there is no problem...
## what Add PR's to `CHANGES` ## why PR's weren't added during the merge process.
**Describe the bug** I don't see any real problem just noticed logs entries. **Logs and dumps** SecDebugLog & SecDebugLogLevel 3 ``` [172440041140.141021]` [/vystrelovaci-rukavice-3-sipky/] [1] rx: regex error 'MATCH_LIMIT' for pattern...
## what Update build configuration to build the library using std C++20 ## why The goal of this PR is not necessarily to update this configuration at this time, but...
The goal of this issue is to collect and centralize information about multi-threading support of the current version of modSecurity , as the topic has come up in a number...
Hub f u
**Describe the bug** A clear and concise description of what the bug is. **Logs and dumps** Output of: 1. DebugLogs (level 9) 2. AuditLogs 3. Error logs 4. If there...
**Describe the bug** ModSecurity sometimes doesn't fully log all of the rule IDs triggered within a request, this is annoying with false positives as you'll have to go through multiple...
Hello! I would like to know what would be the best way I can do something similar to this (taken from ChatGPT). I would need to detect when there are...
Metadata
Owner
Metadata
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range o...