fuzzylogic
- Total activity 235
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 81
Comments
Recent activity by fuzzylogic-
Most likely your website's contact form is being abused due to no captcha, weak spam protection or with challenge answer viewable in the html. If your contact form sends using an ajax request the ...
-
If this is correct, and if it's found they get a Forbidden error. then you are 90% there already. CSF has configuration settings to manage how to add IPs to the firewall that repeatedly generate 4...
-
@joaosavioli Did rule 20000000 work in the way you were hoping?
-
As a matter of interest "OWASP ModSecurity Core Rule Set V3.0" provided by cPanel has a Paranoia Level 2 rule (913101) that uses the pmFromFile operator to parse the file scripting-user-agents.data...
-
Here is a rule that will do as you requested. It has the REQUEST_FILENAME conditional you wanted. It also has the first conditional for the REQUEST_METHOD to be equal to POST. This is the fastest w...
-
70% of legitimate http requests to your server will have gecko in the User Agent: string. So without posting some context as to why you want to do this and exactly what are you trying to achieve po...
-
@Cloud9 During the 3 days you had problems the uri... waf.comodo.com/doc/meta_comodo_litespeed.yaml and waf.comodo.com/doc/meta_comodo_apache.yaml have been redirecting to... waf.comodo.com/user T...
-
OK I see whats happened. Sparak-3 is referencing the older version of the cPanel curated OWASP ruleset (and its .yaml file) The newer version OWASP3 has version 2.9.3 of Modsecurity (and newer vers...
-
Possible cause may be no entry in...
-
There is an unresolved recent active thread with some admins noticing Modsec ruleset update failures, you may have discovered the reason.