Re: [mod-security-users] Positive Security Model
Brought to you by:
victorhora,
zimmerletw
From: Ivan R. <iva...@gm...> - 2006-05-25 20:00:45
|
On 5/25/06, Alexx Alexx <zm...@ya...> wrote: > My question is addressed to the author of the > mod_security. Some time ago I read in your blog, that > your are intrested in idea of including positive > security model ito your mod_security module. Are you > going to implement this somewhen? I am, but the feature didn't make it to v2.0 due to time constraints. But it's now on the top of the list. I decided to leave positive security out because it needs interactivity in order to work properly and the management GUI is not going to be ready for a couple of more months. > OR, perhaps, it's > already implemented? > I'm rather intrested of positive security model and > I'd like to clarify wheter it's possible to include > into your application! It's possible to manually write the rules but that's somewhat hard/boring/time consuming to do. --=20 Ivan Ristic, Technical Director Thinking Stone, http://www.thinkingstone.com ModSecurity: Open source Web Application Firewall |