About modsecurity-nginx issue #48
Comments
|
It is ok so use modsecurity_rules_file multiple times. |
|
@zimmerle I used modsecurity-nginx version ,in my nginx config I only add "modsecurity on" and "modsecurity_rules_file" In addition to the two commands do I have to do any other operations?If so, please tell me the detailed steps,Because of your official document sent these two commands not only introduce the other steps?? |
|
You should not see 2.9.1 message if you are not running 2.9.1. There is something wrong with your installation or compilation. |
When I use modsecurity-nginx,if I have many crs rules like "REQUEST-901-INITIALIZATION.conf REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
REQUEST-905-COMMON-EXCEPTIONS.conf REQUEST-910-IP-REPUTATION.conf REQUEST-911-METHOD-ENFORCEMENT.conf
REQUEST-912-DOS-PROTECTION.conf REQUEST-913-SCANNER-DETECTION.conf REQUEST-920-PROTOCOL-ENFORCEMENT.conf
REQUEST-921-PROTOCOL-ATTACK.conf REQUEST-930-APPLICATION-ATTACK-LFI.conf REQUEST-931-APPLICATION-ATTACK-RFI.conf
REQUEST-932-APPLICATION-ATTACK-RCE.conf REQUEST-933-APPLICATION-ATTACK-PHP.conf REQUEST-941-APPLICATION-ATTACK-XSS.conf
REQUEST-942-APPLICATION-ATTACK-SQLI.conf REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf REQUEST-949-BLOCKING-EVALUATION.conf
RESPONSE-950-DATA-LEAKAGES.conf RESPONSE-951-DATA-LEAKAGES-SQL.conf RESPONSE-952-DATA-LEAKAGES-JAVA.conf
RESPONSE-953-DATA-LEAKAGES-PHP.conf RESPONSE-954-DATA-LEAKAGES-IIS.conf RESPONSE-959-BLOCKING-EVALUATION.conf
RESPONSE-980-CORRELATION.conf" so I can use "modsecurity_rules_file /etc/nginx/owasp-modsecurity-crs/rules/*.conf"???????? If I use modsecurity-nginx so I don't use the modsecurity.conf and crs-setup.conf and unicode.mapping file ??????
The text was updated successfully, but these errors were encountered: