Re: [mod-security-users] mod_deflate & 960903
Brought to you by:
victorhora,
zimmerletw
From: Michael C. <mic...@he...> - 2009-04-16 11:36:44
|
Hi Joel, With the help of the list, I was able to configure mod_security and mod_deflate with the following filter chain: FilterDeclare modsec CONTENT_SET FilterProvider modsec modsecurity_out env=modsec-ignore !=1 FilterDeclare compress CONTENT_SET FilterProvider compress DEFLATE Content-Type /^text.html|text.plain|text.xml|application.javascript|text.css/ FilterProtocol compress change=yes FilterChain modsec compress Perhaps this will do it for you? Mike On Thu, 2009-04-16 at 16:10 +1000, Joel Duckworth wrote: > Hi, I've read through previous posts on how to use mod_deflate with > modsecurity but I'm still a little hazy. When I have mod_deflate > enabled I get 960903 messages because it can't read the compressed > content - fair enough. This post > http://article.gmane.org/gmane.comp.apache.mod-security.user/4617/match=960903+mod_deflate mentions about mod_headers to allow this to work but I'm not using apache as a reverse proxy some I'm not sure if it applies. > > Is someone able to clarify that if you want to still have mod_deflate > compressing content to the client and all traffic scanned by > modsecurity that the info in that post (step 2) is how to do it? > > Also, I couldn't find any info about this in the manual, isn't this > sort of configuration worth mentioning there if traffic can completely > bypass modsecurity if certain other mods are enabled? > > -- > Sincerely, > Joel Duckworth > http://duckworth.me - jo...@du... > > > ------------------------------------------------------------------------------ > Stay on top of everything new and different, both inside and > around Java (TM) technology - register by April 22, and save > $200 on the JavaOne (SM) conference, June 2-5, 2009, San Francisco. > 300 plus technical and hands-on sessions. Register today. > Use priority code J9JMT32. http://p.sf.net/sfu/p > _______________________________________________ mod-security-users mailing list mod...@li... https://lists.sourceforge.net/lists/listinfo/mod-security-users Commercial ModSecurity Appliances, Rule Sets and Support: http://www.modsecurity.org/breach/index.html Please consider the environment before printing this email. E-mail messages may contain viruses, worms, or other malicious code. By reading the message and opening any attachments, the recipient accepts full responsibility for taking protective action against such code. Henry Schein is not liable for any loss or damage arising from this message. The information in this email is confidential and may be legally privileged. It is intended solely for the addressee(s). Access to this e-mail by anyone else is unauthorized. |