Hi Breno,

 

Thx for being sharp-sighted.

 

Regards,

 

K

 

 

From: Breno Silva [mailto:breno.silva@gmail.com]
Sent: maandag 22 oktober 2012 14:28
To: Kristof Baute
Cc: mod-security-users@lists.sourceforge.net
Subject: Re: [mod-security-users] ruleRemoveTargetById segmentation fault

 

Looks like you are using a wrong separator ":"  between the ID and the TARGET list -> 981319 [:] ARGS:passwordfield

You must use ";" Try this: 

 
SecRule REQUEST_FILENAME "@streq /login" "phase:1,t:none,nolog,pass,

ctl:ruleRemoveTargetById=981319;ARGS:passwordfield,id:'10000'"


Thanks

Breno

On Mon, Oct 22, 2012 at 6:51 AM, Kristof Baute <kbaute@reference.be> wrote:


Hi,

I am trying to add a CRS exception for a password field. So I have added the following rule:

SecRule REQUEST_FILENAME "@streq /login" "phase:1,t:none,nolog,pass,ctl:ruleRemoveTargetById=981319:ARGS:passwordfield,id:'10000'"

But when I connect to the login page, I get a connection reset and the following in the apache error log:
[Mon Oct 22 13:44:36 2012] [notice] child pid 18638 exit signal Segmentation fault (11)

Apache = 2.2.14
OS = Ubuntu 12.04
Modsecurity = 2.7.0

Regards,

Kristof

------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_sfd2d_oct
_______________________________________________
mod-security-users mailing list
mod-security-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-users
Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
http://www.modsecurity.org/projects/commercial/rules/
http://www.modsecurity.org/projects/commercial/support/