Re: [mod-security-users] PCRE limits exceeded
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] PCRE limits exceeded
|
From: Breno S. <bre...@gm...> - 2012-01-16 14:38:47
|
Hi Sean, In modsec 2.6 we do not enable it by default. Try to compile : ./configure --enable-pcre-match-limit=10000 --enable-pcre-match-limit-recursion=10000 Breno On Mon, Jan 16, 2012 at 8:21 AM, Sean O'Sullivan <dit...@ho...>wrote: > Hi all, > > Sorry to bring this topic up again, its all over google, but I upgraded > modsec from 2.6 to 2.6.3 this morning and have been getting a lot of PCRE > limits exceeded errors with modsecurity_crs_41_sql_injection_attacks.conf > line 58. These were not happening before the upgrade. I am using the > 2.2.3 ruleset. I created a new file which contains the SecPcreMatchLimit > and SecPcreMatchLimitRecursion settings and no matter how large I create > the limits I am still see the errors. I have increased them from 5000 to > 1500000 (just for testing) and still see the errors. Am I missing > something else? Thanks in advance all. > > Sean > > > ------------------------------------------------------------------------------ > RSA(R) Conference 2012 > Mar 27 - Feb 2 > Save $400 by Jan. 27 > Register now! > http://p.sf.net/sfu/rsa-sfdev2dev2 > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: > http://www.modsecurity.org/projects/commercial/rules/ > http://www.modsecurity.org/projects/commercial/support/ > > |
