On Thu, Oct 10, 2013 at 1:03 PM, Costas Antoniou <antoniou.costas@gmail.com> wrote:
Hello I have installed modsecurity 2.7.5 on IIS 7 and I have logged many false positives that I would like to exclude can I use the directive SecRuleRemove somehow or is there another way for IIS.


Hi Costas,

All the normal exception handling directives, e.g. SecRuleUpdateTargetById, will work on IIS. For details see:
http://blog.spiderlabs.com/2011/08/modsecurity-advanced-topic-of-the-week-exception-handling.html

--
 - Josh
 
Thank you
Costas

------------------------------------------------------------------------------
October Webinars: Code for Performance
Free Intel webinars can help you accelerate application performance.
Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from
the latest Intel processors and coprocessors. See abstracts and register >
http://pubads.g.doubleclick.net/gampad/clk?id=60134071&iu=/4140/ostg.clktrk
_______________________________________________
mod-security-users mailing list
mod-security-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-users
Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
http://www.modsecurity.org/projects/commercial/rules/
http://www.modsecurity.org/projects/commercial/support/