Thread: [mod-security-users] Possible to exempt mod_security from certain trusted IPs?
Brought to you by:
victorhora,
zimmerletw
From: jeremy@TICKWATCH <je...@ti...> - 2005-11-27 19:18:19
|
We've just installed mod_security here and it looks very nice :) The server is running Vbulletin and it seems that any good set of most mod_security rules will bust the template manager system for Vbulletin. So I'm curious if anyone knows if it is possible to disable the mod_security rules for a couple IP's (mine) deemed to be trusted. Thanks |
From: Ivan R. <iv...@we...> - 2005-11-27 20:38:35
|
jeremy@TICKWATCH wrote: > We've just installed mod_security here and it looks very nice :) > > The server is running Vbulletin and it seems that any good set of most > mod_security rules will bust the template manager system for Vbulletin. > > So I'm curious if anyone knows if it is possible to disable the > mod_security rules for a couple IP's (mine) deemed to be trusted. Sure it is, using something like (at the top): SecFilterSelective REMOTE_ADDR ^YOUR_IP_ADDRESS$ nolog,allow Look it up in the manual. -- Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |