Re: [mod-security-users] Logging server response
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] Logging server response
|
From: Christian F. <chr...@ne...> - 2018-10-20 18:38:40
|
Hey Todor, Hmm, my initial thought was wrong. Your Rewrite Rule should not be any problem. What does your DebugLog say? Can you do a rule in phase 4 that displays RESPONSE_BODY in an alert message? Do you see it? Best, Christian On Fri, Oct 19, 2018 at 10:39:21AM +0300, Todor Petkov wrote: > On Thu, Oct 18, 2018 at 9:00 PM Christian Folini > <chr...@ne...> wrote: > > > > Todor, > > > > Your pastebin is now gone, but it feels as if your RewriteRule would ahve > > apache stop all further execution of the request. This bypasses ModSec > > and immediately sends out the response. This is also the case when you > > encounter a local 404 as an example. > > > Hello, > > this is the new pastebin https://pastebin.com/PxAPdH4b > > I came upon this issue on github > https://github.com/SpiderLabs/ModSecurity/issues/185 but I could not > find anything useful there. Also, the response is "200". > > htaccess is: > RewriteEngine on > RewriteRule (.*) index.php [L] > > > Thanks in advance > > > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: > http://www.modsecurity.org/projects/commercial/rules/ > http://www.modsecurity.org/projects/commercial/support/ |
