Re: [mod-security-users] Trigger modsec log/deny from web script - logging web spam flagged by b2ev
Brought to you by:
victorhora,
zimmerletw
From: Ivan R. <iv...@we...> - 2005-11-30 18:33:03
|
Jason Edgecombe wrote: > Hi there, > > Is there a way to have mod_security deny and log a request based on the > action of a php/perl/cgi script? > > Specifically, I'm using b2evolution for weblogs and I want to have > mod_security log the requests that b2evolution marks as spam. Currently, > b2evolution returns a 403 when a comment/trackback is spam. I don't see > a way to trigger mod_security based on response code. Would setting an > environment variable from within a PHP script accomplish this? How about: SecAuditLogRelevantStatus ^403$ -- Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |