[Owasp-modsecurity-core-rule-set] rule bypass

Chris Datfung chris.datfung at gmail.com
Sun Jan 17 10:53:49 EST 2010


On Sun, Jan 17, 2010 at 5:51 PM, Ivan Ristic <ivan.ristic at gmail.com> wrote:

> Ah, I now realise that there's no ctl:ruleRemoveByMsg and since
> there's no ID associated with the rule you want to remove, your only
> option is to modify the CRS file directly.
>

Exactly. Which gets back to the question, would adding a ctl:ruleRemoveByMsg
feature to ModSecurity be appropriate/doable.

Thanks,
  Chris
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-modsecurity-core-rule-set/attachments/20100117/7f6959bf/attachment.html 


More information about the Owasp-modsecurity-core-rule-set mailing list