Add SessionID/RequestID/IP/Host to Debug Log Entries #713

DOSarrest · 2014-05-05T15:59:40Z

The debug logs sent through nginx differ than the logs sent to the debug.log file. The debug.log file contains the values...
[localhost/sid#9b5880][rid#21d7f0c0]
But these values are not put sent to the nginx log. The host value also is the local system hostname rather than the hostname of the server running the nginx daemon rather than the hostname of the website that was accessed.
Without this information it's almost impossible to figure out what log entry is for what website. We run multiple websites through nginx via reverse proxying.
Could you please add the sid/rid into the logs sent to nginx along with a proper IP/Host of the site rather than the local server hostname.
We are willing to arrange monetary compensation to have this functionality fixed asap.

victorhora · 2018-09-24T23:45:12Z

Nginx support in ModSecurity 2.9.x branch is deprecated. This shouldn't be a concern with libModSecurity.

Thanks!

DOSarrest mentioned this issue May 15, 2014

Nginx 1.5.10 + ModSecurity 2.7.7: Process killed by segmentation fault at 10 #658

Closed

zimmerle added Type - Config Improvement and removed Type - Config Improvement labels May 15, 2014

victorhora self-assigned this May 20, 2017

victorhora added this to the v3.0.3 milestone Sep 24, 2018

victorhora closed this as completed Sep 24, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add SessionID/RequestID/IP/Host to Debug Log Entries #713

Add SessionID/RequestID/IP/Host to Debug Log Entries #713

DOSarrest commented May 5, 2014

victorhora commented Sep 24, 2018

Add SessionID/RequestID/IP/Host to Debug Log Entries #713

Add SessionID/RequestID/IP/Host to Debug Log Entries #713

Comments

DOSarrest commented May 5, 2014

victorhora commented Sep 24, 2018