Re: [mod-security-users] Strange Logs
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] Strange Logs
|
From: Ivan R. <iv...@we...> - 2005-06-28 15:40:21
|
Christian Martorella wrote: > Hi i was trying some logs for the modsecurity Console, and i found these > entries (generated by Nikto): > Why there is not Modsecurity_message? > Why there is no Action? modsecurity 1.9dev2 logs certain requests based only on the response status code (I will change this to be just an option before the final 1.9). So it is probably that Apache rejected those requests before they reached mod_security. You can verify this theory by looking at the debug log (at level 2 or more). > Why sometimes the Handler is proxy-server, and others null? Sometimes a request can be rejected before Apache decides what to do with it. In such cases, the handler is still unknown. -- Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |
