Re: [mod-security-users] [mod_security2]Web services
Brought to you by:
victorhora,
zimmerletw
From: Jean-Paul S. <jsa...@gm...> - 2007-04-17 08:00:36
|
In fact, my problem come from the xpath expression and soap messages : SecRule XML:/soap:Envelope/soapenv:Body/ns1:function1/data "123" deny,phase:2 <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:ns1="http://host.hsc.fr/"> <soapenv:Body> <ns1:function1> <data>123</data> </ns1:function1> </soapenv:Body> </soapenv:Envelope> If i use : SecRule XML://data "123" deny,phase:2, it works but i don't think it's a good practice, it solve the problem, but it's not exactly what i want. Thanks in advance. 2007/4/16, Ryan Barnett <Rya...@br...>: > > Those are indeed excellent articles. In fact, I am working on some > updated versions of those articles that reflect the Mod 2.0 rules > language. I will be posting them out to the Mod site soon and I will > let you all know when they are available. > > -- > Ryan C. Barnett > ModSecurity Community Manager > Breach Security: Director of Application Security Training > Web Application Security Consortium (WASC) Member > Author: Preventing Web Attacks with Apache > > -------------- > Web Security Threat Report Webinar on May 9, 2007 (12 pm EST) > Learn More About the Breach Webinar Series: > http://www.breach.com/webinars.asp > -------------- > > > > -----Original Message----- > > From: mod...@li... [mailto:mod- > > sec...@li...] On Behalf Of Christian > > Bockermann > > Sent: Sunday, April 15, 2007 5:35 AM > > To: Mod Security > > Subject: Re: [mod-security-users] [mod_security2]Web services > > > > There used to be a link to an article by Shreeraj Shah for this on > > the modsecurity homepage. > > However a google search on "modsecurity webservices" reveals this and > > a few other links. The > > following two might be a good start, though they refer to > > modsecurity-1.9: > > > > > > http://www.infosecwriters.com/text_resources/pdf/Defending-web- > > services.pdf > > > > http://www.onlamp.com/pub/a/onlamp/2005/06/09/wss_security.html? > > CMP=OTC-72M40J560326&ATT=Securing+Web+Services+with+mod_security > > > > > > To get a little help on migrating these to modsecurity-2 you will > > probably find Ryan's > > migration-matrix helpful: > > > > Blog-Entry: > > > http://www.modsecurity.org/blog/archives/2007/04/modsecurity_mig.htm > > l > > > > Migration-Matrix: > > http://www.modsecurity.org/documentation/ModSecurity-Migration- > > Matrix.pdf > > > > > > Regards, > > Chris > > > > > > > > Am 13.04.2007 um 15:08 schrieb Jean-Paul Sartres: > > > > > Hello, > > > > > > do someone use mod_security to filter XML input in a webservice and > > > can send some rules and dtd/xsd to show how it works. > > > > > > Thanks in advance > > > > > > Best regards > > > > > > JP > > > > ---------------------------------------------------------------------- > > > --- > > > Take Surveys. Earn Cash. Influence the Future of IT > > > Join SourceForge.net's Techsay panel and you'll get the chance to > > > share your > > > opinions on IT & business topics through brief surveys-and earn cash > > > http://www.techsay.com/default.php? > > > > page=join.php&p=sourceforge&CID=DEVDEV________________________________ > > > _______________ > > > mod-security-users mailing list > > > mod...@li... > > > https://lists.sourceforge.net/lists/listinfo/mod-security-users > > > > > > > ------------------------------------------------------------------------ > - > > This SF.net email is sponsored by DB2 Express > > Download DB2 Express C - the FREE version of DB2 express and take > > control of your XML. No limits. Just data. Click to get it now. > > http://sourceforge.net/powerbar/db2/ > > _______________________________________________ > > mod-security-users mailing list > > mod...@li... > > https://lists.sourceforge.net/lists/listinfo/mod-security-users > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > |