[mod-security-users] mod_security rules feature request + production tools ?
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] mod_security rules feature request + production tools ?
|
From: CASTELLE T. <tca...@ge...> - 2006-02-01 12:03:03
|
Hello everybody, The new mod_security rules project is a great thing. It is more generic than the gotroot.com files, and the files are smaller (which is, I think, good for performance). However, I have 2 small modification requests : - Could you add "id" and "rev" meta-data to each rules, so that we can exclude specific rules when the protected website matches false positives. It could also allow us to run automatic updates by detecting new rules or changes on existing rules. - Could you modify the "JavaScript event handlers" rules, because it seems too generic to me. Couldn't : "SecFilterSelective ARGS "onSelect"" be instead : "SecFilterSelective ARGS "onSelect[[:space:]]*=|=[[:space:]]*onSelect" For instance, some of our websites matches this because of "http://blablabla/test?task=ValidationSelection" Thanks for your help, Regards, Thomas. |
