Hello Josh,

Yes it looks fixed in the trunk code and will be available in 2.7.4. I will release it today or Monday.


On 5/24/13 12:47 PM, "Josh Berry" <josh.berry@spiralsecurity.com> wrote:

I have installed modsecurity 2.7.3 on Nginx 1.4.1 and just about everything appears to work correctly with the exception of images over around 50K in size.  I added some of the OWASP rules and started testing my site and found that images larger that 50k wouldn’t display.  
I checked the nginx and modsecurity rules and found no alerts when accessing the pages that serve images larger than 50, so I started removing the rules.  I ended up removing all rules and still have the same problem.  All other content works, blocking works, etc other than images > 50k in size.
I then tried just setting modsecurity to detection only mode with and without any rules enabled with the same results.
What am I missing?
Josh Berry

Try New Relic Now & We'll Send You this Cool Shirt
New Relic is the only SaaS-based application performance monitoring service
that delivers powerful full stack analytics. Optimize and monitor your
browser, app, & servers with just a few lines of code. Try New Relic
and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_may

mod-security-users mailing list
Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:

This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.