[Mod-security-developers] [JIRA] Resolved: (MODSEC-232) Preserve names/identity of the variables go

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

     [ https://www.modsecurity.org/tracker/browse/MODSEC-232?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Breno Silva Pinto resolved MODSEC-232.
--------------------------------------

    Resolution: Fixed

> Preserve names/identity of the variables going into MATCHED_VARS
> ----------------------------------------------------------------
>
>                 Key: MODSEC-232
>                 URL: https://www.modsecurity.org/tracker/browse/MODSEC-232
>             Project: ModSecurity
>          Issue Type: Improvement
>      Security Level: Normal
>          Components: Core
>    Affects Versions: 2.6.0
>            Reporter: Ivan Ristic
>            Assignee: Breno Silva Pinto
>             Fix For: 2.7.0
>
>
> For this rule:
> SecRule ARGS "xxx" chain,phase:1,log,pass
> SecRule MATCHED_VARS "yyy" chain
> SecRule MATCHED_VARS "zzz"
> The debug output contains (among other things):
> Expanded "MATCHED_VARS" to "MATCHED_VARS:a|MATCHED_VARS:b"
> It would be preferred to preserve the identity of matched variables, because that will help the user know where they came from. Thus, the above line should ideally be:
> Expanded "MATCHED_VARS" to "ARGS:a|ARGS:b"

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[Mod-security-developers] [JIRA] Resolved: (MODSEC-232) Preserve names/identity of the variables go

[Mod-security-developers] [JIRA] Resolved: (MODSEC-232) Preserve names/identity of the variables going into MATCHED_VARS