fuzzylogic
- Total activity 235
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 81
Comments
Recent activity by fuzzylogic-
A very similar sounding issue was solved and documented 2 months ago here...
-
Firstly are the phrases... /.htaccess.zip /wp-load.zip in the file text_match/zip-attack.txt? (you have not said that they are but are using them as examples) I personally would not use the forwar...
-
@servtastic If I was trying to block request attempts to known dodgy zip files I would use a rule like this... SecRule REQUEST_FILENAME "@pmFromFile text_match/zip-attack.txt" "msg:'*** GPH zip att...
-
@net@work, During the 3 days you had problems the uri... waf.comodo.com/doc/meta_comodo_litespeed.yaml and waf.comodo.com/doc/meta_comodo_apache.yaml have been redirecting to... waf.comodo.com/use...
-
Sorry, I'm not yet up on the differences between setting up mod_security v3.x and mod_security v2. Is cPanel's implementation of Mod-security even aware of the different setup? It's mentioned he...
-
If I saw these errors in the circumstances you describe and if modsec was working properly with OWASP3 ruleset prior to the addition of custom rules I would be almost certain that the cause would b...
-
@webstyler The enties you posted are from 2 requests... Request 1). GET /?utm_source=official%20store&utm_medium=bshop&utm_campaign=o_w_s Rule 941100 was a match. This rule loaded the Inbound an...
-
I'm guessing, but your rule in Phase 1 (Request headers) on match it issues the Drop command... [QUOTE] drop Description: Initiates an immediate close of the TCP connection by sending a FIN packe...
-
I got one also.
-
The log line you posted is only one of many mod-security rule hits for that http request. If you run the command... grep -n 'XwLkqnDNqLQBB@MMoe6MvQAAAA0' /usr/local/apache/logs/error_log you will s...