Thread: [mod-security-users] image on facebook share
Brought to you by:
victorhora,
zimmerletw
From: Leonardo B. A. <leo...@lb...> - 2013-04-18 17:28:49
|
Hi guys!! Our site's company has a icon to share the page on facebook. The problem was the image was not appearing. so I checked on debug.log and I created the exception rule below that is working, however I would to know if is there a better way to do it or is it correct ? SecRule REQUEST_HEADERS:Range "bytes=0-" id:34,allow,log,t:none,ctl:ruleRemoveById=958291 ==>> debug.log [18/Apr/2013:14:00:40 --0300] [ www.mysite.com/sid#2b25f58][rid#409c490][/sites/all/themes/mysite/img/site-logo.jpg][2] Warning. String match "bytes=0-" at REQUEST_HEADERS:Range. [file "/etc/httpd/conf.d/modsecurity/base_rules/modsecurity_crs_20_protocol_violations.conf"] [line "427"] [id "958291"] [rev "2"] [msg "Range: field exists and begins with 0."] [data "bytes=0-8999"] [severity "WARNING"] [ver "OWASP_CRS/2.2.7"] [maturity "6"] [accuracy "8"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [18/Apr/2013:14:00:41 --0300] [ www.mysite.com/sid#2b25f58][rid#409c490][/sites/all/themes/mysite/img/site-logo.jpg][2] Warning. String match "bytes=0-" at REQUEST_HEADERS:Range. [file "/etc/httpd/conf.d/modsecurity/base_rules/modsecurity_crs_20_protocol_violations.conf"] [line "427"] [id "958291"] [rev "2"] [msg "Range: field exists and begins with 0."] [data "bytes=0-5242879"] [severity "WARNING"] [ver "OWASP_CRS/2.2.7"] [maturity "6"] [accuracy "8"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [18/Apr/2013:14:01:06 --0300] [ www.mysite.com/sid#2b25f58][rid#40c7a20][/cgi/cgilua.exe/sys/for...@sa...tp://bes...@sa...tp://bestbinaryprofits.commailto:for...@sa...tp://bestbinaryprofits.com][2] Warning. String match within ".asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .resources/ .resx/ .sql/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/" at TX:extension. [file "/etc/httpd/conf.d/modsecurity/base_rules/modsecurity_crs_30_http_policy.conf"] [line "88"] [id "960035"] [rev "2"] [msg "URL file extension is restricted by policy"] [data ".com"] [severity "CRITICAL"] [ver "OWASP_CRS/2.2.7"] [maturity "9"] [accuracy "9"] [tag "OWASP_CRS/POLICY/EXT_RESTRICTED"] [tag "WASCTC/WASC-15"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [18/Apr/2013:14:01:19 --0300] [ www.mysite.com/sid#2b25f58][rid#57eb9e0][/sites/all/themes/mysite/img/popup-leitv.jpg][2] Warning. String match "bytes=0-" at REQUEST_HEADERS:Range. [file "/etc/httpd/conf.d/modsecurity/base_rules/modsecurity_crs_20_protocol_violations.conf"] [line "427"] [id "958291"] [rev "2"] [msg "Range: field exists and begins with 0."] [data "bytes=0-5242879"] [severity "WARNING"] [ver "OWASP_CRS/2.2.7"] [maturity "6"] [accuracy "8"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [18/Apr/2013:14:01:26 --0300] [ www.mysite.com/sid#2b25f58][rid#40c7a20][/sites/default/files/3123-000032.jpg][2] Warning. String match "bytes=0-" at REQUEST_HEADERS:Range. [file "/etc/httpd/conf.d/modsecurity/base_rules/modsecurity_crs_20_protocol_violations.conf"] [line "427"] [id "958291"] [rev "2"] [msg "Range: field exists and begins with 0."] [data "bytes=0-8999"] [severity "WARNING"] [ver "OWASP_CRS/2.2.7"] [maturity "6"] [accuracy "8"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [18/Apr/2013:14:01:27 --0300] [ www.mysite.com/sid#2b25f58][rid#41a14f0][/sites/default/files/3123-000032.jpg][2] Warning. String match "bytes=0-" at REQUEST_HEADERS:Range. [file "/etc/httpd/conf.d/modsecurity/base_rules/modsecurity_crs_20_protocol_violations.conf"] [line "427"] [id "958291"] [rev "2"] [msg "Range: field exists and begins with 0."] [data "bytes=0-5242879"] [severity "WARNING"] [ver "OWASP_CRS/2.2.7"] [maturity "6"] [accuracy "8"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] many thanks!! |