Christian Folini
Christian Folini
> The log spam is more other info messages printed by Nginx, not Modsecurity related. From Modsecurity I only see the detection rule with level info. On Apache, you can...
That makes sense to me.
Please don't hand-edit. @fgsch: Do you have an idea what's the matter here? Also: There might be regex-snippet re-use across multiple rules. But even if it would be a simplification...
Cool. Could you please share the code? Could we integrate this into utils?
But the problem with the assembly script persists, does not it? We should not merge as long as we have not sorted that one out.
I do not mind introducing c-source there. And if we do not like it long-term, we can always replace with python code. Please start the cleanup process. :)
That sounds great. Want to contact me on Slack?
I do not think the performance difference is that big between C and Python bindings. The original has a 30-40% difference, but with the faster regexes, it's really quite low....
I'm taking it into the agenda for the next chat.
Decision during the CRS project chat on March 2, 2020: @franbuehler will solve this. https://github.com/SpiderLabs/owasp-modsecurity-crs/issues/1683#issuecomment-593584538