Thread: Re: [mod-security-users] Dramatic apache response time with mod_security loaded
Brought to you by:
victorhora,
zimmerletw
From: george N. <mad...@ho...> - 2014-01-28 16:35:15
|
How would i go if i wanted to whitelist my cookie name ? Its not the default phpsessid so this could be the issue. Is the SetCookie response_header being checked anywhere in the base rules(phase 3)? Couldnt find it with a simple grep. My best bet now is that modsecurity stucks somewhere with my custom cookies in either phase1 or phase3. Perhaps phase 2, too. Tried something like that in a 61_custom_rules.conf SecRuleUpdateTargetById 981231 !REQUEST_COOKIES:/^custom-name/^__custom-name__/^__custom-name____/ but didnt see an improvement. Thanks for all the replies so far its not selinux(disabled it),nor something with my code since i am not allowing response body processing (phase 4). And with modsecurity unloaded i can login directly. Debug logs dont indicate something though, its really strange and i cant raise the debug level to 9 cause its a binary package. |
From: Reindl H. <h.r...@th...> - 2014-01-28 16:43:44
Attachments:
signature.asc
|
Am 28.01.2014 17:33, schrieb george Nopicture: > How would i go if i wanted to whitelist my cookie name ? Its not the > default phpsessid so this could be the issue unlikely for several reasons * we not use phpsessid * the session-id is not the only cookie out there > Is the SetCookie > response_header being checked anywhere in the base rules(phase 3)? > Couldnt find it with a simple grep. My best bet now is that modsecurity > stucks somewhere with my custom cookies in either phase1 or phase3. > Perhaps phase 2, too. > Tried something like that in a 61_custom_rules.conf > SecRuleUpdateTargetById 981231 > !REQUEST_COOKIES:/^custom-name/^__custom-name__/^__custom-name____/ > but didnt see an improvement. > Thanks for all the replies so far its not selinux(disabled it),nor > something with my code since i am not allowing response body processing > (phase 4). And with modsecurity unloaded i can login directly. Debug > logs dont indicate something though, its really strange and i cant raise > the debug level to 9 cause its a binary package |