Re: [mod-security-users] problem with a form

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

thanks
i found the problem it'. for too long POST variable requests
how can i add an rule for :
ttp://www.domain.com/page.php?type=component_sections&id=363&t2=INSF&sid=130
<http://www.domain.com/page.php?type=component_sections&id=363&t2=INSF&sid=130>
and customize the limited request crs?
thanks

*Senior Security Researcher at*

On Sun, May 8, 2016 at 12:52 PM, Reindl Harald <h.r...@th...>
wrote:

>
>
> Am 08.05.2016 um 10:15 schrieb Alireza.M:
>
>>     --7874056f-H--
>>     *Message: Access allowed (phase 1). Pattern match "^5\\.9\\.22\\.5$"
>>     at REMOTE_ADDR. [file "/etc/httpd/conf.d/modsecurity.conf"] [line
>>     "30"] [id "10005"]*
>>     Apache-Error: [file
>>     "/builddir/build/BUILD/php-5.5.30/sapi/apache2handler/sapi_apache2.c"]
>>     [line 325] [level 3] PHP Notice:  Use of undefined constant _APP -
>>     assumed '_APP' in /var/www/html/page.php on line 7, referer:
>>
>> http://www.domain.com/page.php?type=component_sections&id=363&t2=INSF&sid=130
>>     Apache-Error: [file
>>     "/builddir/build/BUILD/php-5.5.30/sapi/apache2handler/sapi_apache2.c"]
>>     [line 325] [level 3] PHP Notice:  Undefined variable: _SESSION in
>>     /var/www/html/page.php on line 7, referer:
>>
>> http://www.domain.com/page.php?type=component_sections&id=363&t2=INSF&sid=130
>>     Apache-Error: [file
>>     "/builddir/build/BUILD/php-5.5.30/sapi/apache2handler/sapi_apache2.c"]
>>     [line 325] [level 3] PHP Notice:  Undefined offset: 1 in
>>     /var/www/html/components/cms/Form/fns.inc.php on line 754, referer:
>>
>> http://www.domain.com/page.php?type=component_sections&id=363&t2=INSF&sid=130
>>     
>> how can i skip this restriction?
>>
>
> which restriction?
> Access allowed (phase 1)
>
> the other lines are warnings of a crappy PHP script
>
>
>
>
> ------------------------------------------------------------------------------
> Find and fix application performance issues faster with Applications
> Manager
> Applications Manager provides deep performance insights into multiple
> tiers of
> your business applications. It resolves application problems quickly and
> reduces your MTTR. Get your free trial!
> https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
> _______________________________________________
> mod-security-users mailing list
> mod...@li...
> https://lists.sourceforge.net/lists/listinfo/mod-security-users
> Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
> http://www.modsecurity.org/projects/commercial/rules/
> http://www.modsecurity.org/projects/commercial/support/
>
>