[mod-security-users] SecRuleEngine DetectionOnly - but still receiving HTTP 500
Brought to you by:
victorhora,
zimmerletw
From: Nathen H. <na...@vi...> - 2008-02-25 17:15:16
|
I have mod_security set monitoring only: SecRuleEngine DetectionOnly However, I am receiving a 500 error when the content-length of a response is over the limit. Here's the message from the apache log: [Mon Feb 18 15:48:23 2008] [error] [client nnn.nnn.nnn.nnn] ModSecurity: Output filter: Content-Length (524981) over the limit (524288). [hostname "www.example.com"] [uri "/users?letter=J"] [unique_id "twgVMEPkJoIAAHFY2McAAAAL"] Why is mod_security preventing a response when the SecRuleEngine is set to DetectionOnly? -Nathen |