[Owasp-modsecurity-core-rule-set] rule bypass
chris.datfung at gmail.com
Sun Jan 17 10:53:49 EST 2010
On Sun, Jan 17, 2010 at 5:51 PM, Ivan Ristic <ivan.ristic at gmail.com> wrote:
> Ah, I now realise that there's no ctl:ruleRemoveByMsg and since
> there's no ID associated with the rule you want to remove, your only
> option is to modify the CRS file directly.
Exactly. Which gets back to the question, would adding a ctl:ruleRemoveByMsg
feature to ModSecurity be appropriate/doable.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-modsecurity-core-rule-set