[mod-security-users] filtering with no log
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] filtering with no log
|
From: David De M. <bio...@ya...> - 2006-02-16 10:36:35
|
Hi all, I have installed mod_security on one of our corporate servers (mod_security: 1.9.2, apache: 2.0.55, OS: FreeBSD 6, PHP: 5.1.2) and it works fine. I first installed mod_security for its ability to log POST requests. This works fine for me. I was wondering if I could use it for filtering and rejecting all the requests which are not identified/addressed by/to a specific web application; logging only the successful requests into access.log. Say a client sends a POST request containing a variable "origin" to a PHP script called "test.php" served by the server on which mod_security is installed and configured. What I would like to do is to only log in the Apache access.log the requests containing "origin" in the POST request AND calling "test.php" by properly configuring mod_security. I looked at the SecFilter, SecFilterSelective and SecFilterDefaultAction and did a few tests... e.g. I tried: SecFilterSelective QUERY_STRING !"test\.php?origin=" "nolog" But this didn't do the job. Not to say that everything got logged into access.log... Any help would be appreciated! ;-) Best regards, David ___________________________________________________________________________ Nouveau : téléphonez moins cher avec Yahoo! Messenger ! Découvez les tarifs exceptionnels pour appeler la France et l'international. Téléchargez sur http://fr.messenger.yahoo.com |
