Marc Stern
Marc Stern
It highly depends on the rules. For instance, if you only checl for stack traces, there are very few chances to find some in JSON (compared to HTML). If you...
I wonder if the cause is not that modsecurity_request_body_end_raw() is called with a body that's not chunked-encoded. Why is it called inside modsecurity_request_body_end_urlencoded(), thus when body is url-encoded, and not...
Can we have the request headers (you can remove any specific one, like cookies)?
Can we have the headers "Content-Type" and "Transfer-Encoding" from the original request?
Sorry, I meant Content-Length. As there was no Transfer-Encoding, I assume Content-Length was present. Can you check with curl -v? Also, what are the values of SecRequestBodyLimitAction, SecRequestBodyLimit, SecRequestBodyNoFilesLimit in...
> ``` > content-length: 70888 > (gdb) print msr->msc_reqbody_length > $5 = 128070 > ``` This is strange no? I expect both values to be equal (real body length =...
Can you give at least the exception from the core dump? We fixed a lot of pointers problems in 2.9.8. Can you try it?
@vizovitin / @Orgoth, can you give the exact exception from the core dump?
You definitely should try 2.9.8. There's a chance that this problem is solved.
Hello. Can you explain what exactly means "it cannot be forwarded"? Please set "LogLevel Debug" in httpd.conf and join the error log. As a side-note, your implementation of forwarding is...