[mod-security-users] How to remove a false-positive rule?
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] How to remove a false-positive rule?
|
From: Johnny S. <st...@op...> - 2007-10-23 15:41:19
|
I am running mod_security 2.1.3 (on CentOS 5) with the Breach Security Core Rules and have a monitoring process (zabbix_agentd) running which seems to be triggering mod_security. What would be the best way to eliminate this local false-positive while not disabling the rule all together? [Tue Oct 23 08:35:08 2007] [error] [client 127.0.0.1] ModSecurity: Warning. Match of "rx ^apache.*perl" against "REQUEST_HEADERS:User-Agent" required. [id "990011"] [msg "Request Indicates an automated program explored the site"] [severity "NOTICE"] [hostname "127.0.0.1"] [uri "/server-status?auto"] [unique_id "vvf-3MCoAQIAAFFJTccAAAAH"] -- *Johnny Stork* Business & Technology Consultant st...@op... ______________________________________________ *Open Enterprise Solutions* /"Empowering Business With Open Solutions"/ http://www.openenterprise.ca |