Re: [mod-security-users] New SecRemoteAddrDefine (httpd-dev CCed)

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

thank you for your feedback

so i am prepared to upgrade Apache on monday
and get rid of some hundret files after tuning
since january my "httpd.spec" fro Fedora 17/18

have a nice weekend!

Am 10.05.2013 18:40, schrieb Breno Silva:
> Hello Reindl,
> 
> We expect release it next Monday.
> 
> Thanks
> 
> 
> On Fri, May 10, 2013 at 1:39 PM, Reindl Harald <h.r...@th... <mailto:h.r...@th...>> wrote:
> 
>     Hi
> 
>     will this be the release version of mod_security-2.7.4?
> 
>     as confirmed all works as expected but i hestitate to update
>     the production servers while all my configs are well prepared
>     for the migration from Apache 2.2 to Apache 2.4 and the not
>     business-critical machines are already there
> 
>     Apache 2.4 brings a lot of improvements and after rolled
>     out the first major update to the webservers after 7 years
>     i can die in peace and our company will still survive :-)
> 
>     Am 06.05.2013 16:34, schrieb Breno Silva:
>     > Reindl,
>     >
>     > Final implementaion is here https://github.com/SpiderLabs/ModSecurity/tree/remotes/trunk
>     > Without SecDefineRemoteAddr. Could you run make CFLAGS=-DMSC_TEST test to check if it is all fine ?
>     >
>     > On Mon, May 6, 2013 at 11:00 AM, Reindl Harald <h.r...@th... <mailto:h.r...@th...>
>     <mailto:h.r...@th... <mailto:h.r...@th...>>> wrote:
>     >
>     >     works fine
>     >
>     >     both tested, proxy listed in "RemoteIPInternalProxy" and without
>     >
>     >     * listed: SecRule REMOTE_ADDR "^10\.0\.0\.99" works
>     >     * not listed: access with nessus-useragent denied as expected
>     >
>     >     thank you!