Re: [mod-security-users] Exclude hosts from checks
Brought to you by:
victorhora,
zimmerletw
From: Clayton D. <cla...@gm...> - 2008-10-22 20:53:09
|
I've tried adding a rule like the ones listed in the FAQ to my httpd.conf file, to the modsecurity_crs_10 file and to a custom _60 rules file that we have and still scans from the scanner server show up in the logs for Mod. Here is the rule I used: SecRule REMOTE_ADDR "^10\.50\.25\15$" phase:1,nolog,allow,ctl:ruleEngine=Off,ctl:auditEngine=Off On Sat, 2008-10-18 at 11:11 -0500, Steve Suehring wrote: > Maybe this is what you want? > > http://www.modsecurity.org/documentation/faq.html#d0e400 > > Steve > > On Sat, Oct 18, 2008 at 12:33:01AM -0400, Clayton Dillard wrote: > > We have a host we use to perform scans of our web environment. Is there > > a way to configure ModSecurity to not alert on traffic coming from this > > host? We don't mind of ModSecurity takes appropriate deny action but we > > just don't want to see all of the alerts in the ModSecurity Console or > > in the logs. > > > > Thanks, > > Clay > > > ------------------------------------------------------------------------- > > This SF.Net email is sponsored by the Moblin Your Move Developer's challenge > > Build the coolest Linux based applications with Moblin SDK & win great prizes > > Grand prize is a trip for two to an Open Source event anywhere in the world > > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > > _______________________________________________ > > mod-security-users mailing list > > mod...@li... > > https://lists.sourceforge.net/lists/listinfo/mod-security-users > |