Comments (4)
User rcbarnett-zz commented on date 2013-07-01 17:01:53:
These filters were converted from PHPIDS SQLi filters. Will need to look into these deeper. I have a feeling many of these will be deprecated with the inclusion of libinjection code in the @detectSQLi operator.
from coreruleset.
User rcbarnett-zz commented on date 2014-03-31 19:02:05:
In the new CRS v3.0.0 - we are removing REQUEST_COOKIES variables from inspect for the converted PHPIDS signatures due to higher FP rates.
from coreruleset.
User OrySegal commented on date 2014-03-31 20:14:13:
Good choice:-)
On Mon, Mar 31, 2014 at 10:02 PM, Ryan Barnett notificationsgithub.comwrote:
In the new CRS v3.0.0 - we are removing REQUEST_COOKIES variables from
inspect for the converted PHPIDS signatures due to higher FP rates.Reply to this email directly or view it on GitHubhttps://github.com/SpiderLabs/owasp-modsecurity-crs/issues/35#issuecomment-39127672
.
from coreruleset.
User dune73 commented on date 2016-11-19 04:21:38:
With the renumbering taking place, 981245 is now 942260.
In the end, rcbarnett's idea was not put into practice. But the rule has been moved to Paranoia Level 2 and is thus no longer part of the default installation. At PL2, we expect people to be able to handle casual false positives.
If the regex is still a widspread problem, we need to investigate further, but for now, I am closing this.
from coreruleset.
Related Issues (20)
- regex error HOT 4
- 403 error message with nginx proxy manager HOT 4
- Protocol enforcement blocks HTTP/3 HOT 1
- 953120 FP with Brotli compression HOT 3
- Rule Exclusions for Wordpress Password-Reset Page not working. Caused by "Simple Cloudflare Turnstile" plugin. Argument value too long. Desperately need help! HOT 4
- [QUESTION] what payload the rule 941340 to prevent? HOT 6
- 🔖 Monthly Chat Agenda August 2023 (2023-08-07 and 2023-08-21) HOT 3
- Bring the v4 branch release notes up to date (CHANGES.MD)
- Rule 950140 improve HOT 4
- Review rule 941210
- rule 942450 improve HOT 11
- "MULTIPART_PART_HEADERS" Header issue in REQUEST-922-MULTIPART-ATTACK.conf HOT 6
- Unknown Item Serial Number HOT 2
- adjust rule paranoia level HOT 7
- Failed to parse request body HOT 13
- `multiline` regex rules with inconsistent behaviour across engines HOT 10
- Microsoft_DefaultRuleSet-2.1-SQLI-942340 - False Positive HOT 3
- Monthly Chat Agenda September 2023 (2023-09-04 and 2023-09-18) HOT 2
- Monthly Chat Agenda October 2023 (2023-10-02 and 2023-10-16) HOT 1
- Still blocking "curl" at PL2 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from coreruleset.