[Mod-security-developers] [JIRA] Resolved: (MODSEC-285) The allow action does not behave as expecte

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

     [ https://www.modsecurity.org/tracker/browse/MODSEC-285?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Breno Silva Pinto resolved MODSEC-285.
--------------------------------------

    Resolution: Not a Bug

Allow is a disruptive action. The documentation says : .. "Disruptive actions will NOT be executed if the SecRuleEngine is set to DetectionOnly... " 

So this behavior is expected. User should use ctl:SecRuleEngine=On if necessary to execute any kind of disruptive action

> The allow action does not behave as expected in detection-only mode
> -------------------------------------------------------------------
>
>                 Key: MODSEC-285
>                 URL: https://www.modsecurity.org/tracker/browse/MODSEC-285
>             Project: ModSecurity
>          Issue Type: Bug
>      Security Level: Normal
>          Components: Actions
>            Reporter: Ivan Ristic
>            Assignee: Breno Silva Pinto
>             Fix For: 2.6.4
>
>
> The allow action does not do anything in detection-only mode. When a match occurs, processing continues with the next rule as if pass was specified.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[Mod-security-developers] [JIRA] Resolved: (MODSEC-285) The allow action does not behave as expecte

[Mod-security-developers] [JIRA] Resolved: (MODSEC-285) The allow action does not behave as expected in detection-only mode