Re: [mod-security-users] Disabling a rule for all cookies
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] Disabling a rule for all cookies
|
From: Breno S. <bre...@gm...> - 2012-08-27 13:35:01
|
Hello, Please ruleUpdateTargetById is deprecated, use the ruleRemoveTargetById included in the latest version. I think you can use SecUpdateTargetById 981242 "!REQUEST_COOKIES". For your case should be better than per-transaction right ? Thanks Breno On Mon, Aug 27, 2012 at 7:52 AM, <mj...@te...> wrote: > Normally, I disable a rule for a particular cookie like this: > > SecAction > > "phase:1,t:none,nolog,pass,ctl:ruleUpdateTargetById=981242;!REQUEST_COOKIES:my_cookie_1" > > Can I disable the same rule for all cookies like this? > > SecAction > > "phase:1,t:none,nolog,pass,ctl:ruleUpdateTargetById=981242;!REQUEST_COOKIES" > > Thanks! > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: > http://www.modsecurity.org/projects/commercial/rules/ > http://www.modsecurity.org/projects/commercial/support/ > |