[Owasp-modsecurity-core-rule-set] rule bypass

Ivan Ristic ivan.ristic at gmail.com
Sun Jan 17 10:56:54 EST 2010


On Sun, Jan 17, 2010 at 3:53 PM, Chris Datfung <chris.datfung at gmail.com> wrote:
>
>
> On Sun, Jan 17, 2010 at 5:51 PM, Ivan Ristic <ivan.ristic at gmail.com> wrote:
>>
>> Ah, I now realise that there's no ctl:ruleRemoveByMsg and since
>> there's no ID associated with the rule you want to remove, your only
>> option is to modify the CRS file directly.
>
> Exactly. Which gets back to the question, would adding a ctl:ruleRemoveByMsg
> feature to ModSecurity be appropriate/doable.

I should think so. It's definitely worth adding it as an enhancement
request to the tracker:

    https://www.modsecurity.org/tracker/

>
> Thanks,
>   Chris

-- 
Ivan Ristic
ModSecurity Handbook [https://www.feistyduck.com]
SSL Labs [https://www.ssllabs.com/ssldb/]


More information about the Owasp-modsecurity-core-rule-set mailing list