[Owasp-modsecurity-core-rule-set] Documenting Attack Detection Methods
yersinia
yersinia.spiros at gmail.com
Tue Mar 23 12:04:40 EDT 2010
On Tue, Mar 23, 2010 at 4:30 PM, Ryan Barnett <ryan.barnett at breach.com>wrote:
> Greetings everyone,
> I wanted to send a note to the list to ask for comments on an idea. I was
> thinking that
> on the OWASP CRS project site -
>
> http://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project- that we
> need to have better documentation that explains how the CRS detects certain
> attack
> categories such as SQL Injection, XSS and RFI.
>
> Would that be helpful to users?
>
> Many useful.
> If so, what I would like to do is to try and tackle each topic one by one
> as a discussion
> item on the mail-list. Once we have all had a chance to discuss, then I
> will update the
> CRS Project site with the consensus data.
>
> Sound good?
>
Very good.
Regards
>
> -Ryan
> _______________________________________________
> Owasp-modsecurity-core-rule-set mailing list
> Owasp-modsecurity-core-rule-set at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-modsecurity-core-rule-set/attachments/20100323/5c05bd2a/attachment.html
More information about the Owasp-modsecurity-core-rule-set
mailing list