Re: [mod-security-users] Selective "DetectionOnly"

[Ed G. <ED...@ha...>]

On Fri, 2017-12-22 at 18:29 +0100, Christian Folini wrote:

Ed,

On Fri, Dec 22, 2017 at 05:13:02PM +0000, Ed Greenberg wrote:


   Christian, could you post an example of this?



Sorry. I'd rather not do that. There are 2-3 recipes that I keep for my
customers. At least for now. :)

But basically it's my standard whitelist recipe used in the book and
on netnea.com and whereever there is a deny, you do a log + setvar
instead. And then at the end you evaluate the variable - or two separate
variables in your case.

Ahoj,

Christian



Good explanation. I'll give that a try, and post a success or failure.





--

Ed Greenberg  |  Web Developer and LInux System Administrator
________________________________
HAPPY Software, Inc. l  Work HAPPY-er!
t. 888-484-2779  l  f. 518-584-5388

This message and any of its attachments are intended only for the use of the designated recipient, or the recipient’s designee, and may contain information that is confidential or privileged. If you are not the intended recipient, please immediately notify HAPPY Software, Inc., delete all copies of the message and any attachments and do not disseminate or make any use of their contents.