github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-13 13:26:01 +03:00
Code Issues Packages Projects Releases Wiki Activity

Adds sanity check to confirm that the rule has an ID and it is not duplicated

Browse Source
This commit is contained in:
Felipe Zimmerle 2015-09-02 10:03:22 -03:00
parent aae8036c0c
commit 035040cd13
85 changed files with 240 additions and 198 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
src/parser/driver.cc
View File

@ -63,6 +63,24 @@ int Driver::addSecRule(Rule *rule) {
}
}
/*
* Checking if the rule has an ID and also checking if this ID is not used
* by other rule
*/
if (rule->rule_id == 0) {
parserError << "Rules must have an ID." << std::endl;
return false;
}
for (int i = 0; i < ModSecurity::Phases::NUMBER_OF_PHASES; i++) {
std::vector<Rule *> rules = this->rules[i];
for (int j = 0; j < rules.size(); j++) {
if (rules[j]->rule_id == rule->rule_id) {
parserError << "Rule id: " << std::to_string(rule->rule_id) << " is duplicated" << std::endl;
return false;
}
}
}
lastRule = rule;
rules[rule->phase].push_back(rule);
return true;
@ -83,11 +101,12 @@ int Driver::parse(const std::string &f, const std::string &ref) {
yy::seclang_parser parser(*this);
parser.set_debug_level(trace_parsing);
int res = parser.parse();
scan_end();
if (audit_log->init() == false) {
parserError << "Problems while initializing the audit logs" << std::endl;
return false;
}
scan_end();
return res == 0;
}
@ -126,6 +145,11 @@ void Driver::error(const yy::location& l, const std::string& m,
parserError << "Line: " << l.end.line << ". ";
parserError << "Column: " << l.end.column << ". ";
}
/*
if (m.empty() == false) {
parserError << " " << m << ".";
}
*/
if (c.empty() == false) {
parserError << c;
}

4
src/parser/seclang-parser.yy
View File

@ -324,7 +324,9 @@ expression:
/* variables */ $3,
/* actions */ $8
);
driver.addSecRule(rule);
if (driver.addSecRule(rule) == false) {
YYERROR;
}
}
| DIRECTIVE SPACE variables SPACE FREE_TEXT SPACE QUOTATION_MARK actions SPACE QUOTATION_MARK
| DIRECTIVE SPACE variables SPACE FREE_TEXT SPACE QUOTATION_MARK actions QUOTATION_MARK

1
src/parser/seclang-scanner.ll
View File

@ -374,6 +374,7 @@ bool Driver::scan_begin () {
}
void Driver::scan_end () {
yylex_destroy();
BEGIN(INITIAL);
}

2
test/test-cases/data/config_example-bad-op-include.txt
View File

@ -1,2 +1,2 @@
SecRule ARGS "@contains config_example" "id:10,pass,t:trim"
SecRule ARGS "@missingOperator config_example" "id:10,pass,t:trim"
SecRule ARGS "@missingOperator config_example" "id:11,pass,t:trim"

3
test/test-cases/data/config_example.txt
View File

@ -1,3 +1,2 @@
Include test-cases/data/config_example2.txt
SecRule ARGS "@contains config_example" "id:10,pass,t:trim"
Include test-cases/data/config_example2.txt
SecRule ARGS "@contains config_example" "id:101,pass,t:trim"

3
test/test-cases/data/config_example2.txt
View File

@ -1,2 +1 @@
SecRule ARGS "@contains config_example2" "id:20,pass,t:trim"
SecRule ARGS "@contains config_example2" "id:40,pass,t:trim"

2
test/test-cases/data/config_example3.txt Normal file
View File

@ -0,0 +1,2 @@
Include test-cases/data/config_example2.txt
SecRule ARGS "@contains config_example" ops "id:1000,pass,t:trim"

4
test/test-cases/regression/action-msg.json
View File

@ -55,8 +55,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,msg:'This is a test, %{REQUEST_HEADERS:Accept}%'\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,msg:'This is a test, %{REQUEST_HEADERS:Accept}%'\"",
"SecRule TX \"@contains to_test\" \"id:2,t:lowercase,t:none\""
]
}
]

8
test/test-cases/regression/action-tag.json
View File

@ -55,8 +55,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"tag:'teste',t:lowercase,t:none\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,tag:'teste',t:lowercase,t:none\"",
"SecRule TX \"@contains to_test\" \"id:2,t:lowercase,t:none\""
]
},
{
@ -115,8 +115,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"tag:'teste %{REQUEST_HEADERS:Pragma}%',t:lowercase,t:none\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,tag:'teste %{REQUEST_HEADERS:Pragma}%',t:lowercase,t:none\"",
"SecRule TX \"@contains to_test\" \"id:2,t:lowercase,t:none\""
]
}
]

12
test/test-cases/regression/actions.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"t:trim,block\""
"SecRule ARGS \"@contains test\" \"id:1,t:trim,block\""
]
},
{
@ -119,7 +119,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"t:trim,redirect:http://www.google.com\""
"SecRule ARGS \"@contains test\" \"id:1,t:trim,redirect:http://www.google.com\""
]
},
{
@ -181,7 +181,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"t:trim,status:500,redirect:http://www.google.com\""
"SecRule ARGS \"@contains test\" \"id:1,t:trim,status:500,redirect:http://www.google.com\""
]
},
{
@ -242,7 +242,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"t:trim,status:500\""
"SecRule ARGS \"@contains test\" \"id:1,t:trim,status:500\""
]
},
{
@ -303,7 +303,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"phase:1,t:trim,status:500\""
"SecRule ARGS \"@contains test\" \"id:1,phase:1,t:trim,status:500\""
]
},
{
@ -364,7 +364,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"phase:4,t:trim,status:500\""
"SecRule ARGS \"@contains test\" \"id:1,phase:4,t:trim,status:500\""
]
}
]

6
test/test-cases/regression/auditlog.json
View File

@ -48,7 +48,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"t:trim,block,auditlog\"",
"SecRule ARGS \"@contains test\" \"id:1,t:trim,block,auditlog\"",
"SecAuditEngine RelevantOnly",
"SecAuditLogParts ABCFHZ",
"SecAuditLogStorageDir /tmp/test",
@ -107,7 +107,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"t:trim,block,auditlog\"",
"SecRule ARGS \"@contains test\" \"id:1,t:trim,block,auditlog\"",
"SecAuditEngine RelevantOnly",
"SecAuditLogParts ABCFHZ",
"SecAuditLogStorageDir /tmp/test",
@ -167,7 +167,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"t:trim,block,auditlog\"",
"SecRule ARGS \"@contains test\" \"id:1,t:trim,block,auditlog\"",
"SecAuditEngine RelevantOnly",
"SecAuditLogParts ABCFHZ",
"SecAuditLogStorageDir /tmp/test",

22
test/test-cases/regression/collection-tx-with-macro.json
View File

@ -55,8 +55,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=%{REQUEST_HEADERS:Cookie}%\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something=%{REQUEST_HEADERS:Cookie}%\"",
"SecRule TX \"@contains to_test\" \"id:2,t:lowercase,t:none\""
]
},
{
@ -115,8 +115,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something%{REQUEST_HEADERS:Cookie}%\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something%{REQUEST_HEADERS:Cookie}%\"",
"SecRule TX \"@contains to_test\" \"id:2,t:lowercase,t:none\""
]
},
{
@ -175,9 +175,9 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=%{REQUEST_HEADERS:Keep-Alive}%\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something=%{REQUEST_HEADERS:Keep-Alive}%\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:2,t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule TX \"@contains to_test\" \"id:3,t:lowercase,t:none\""
]
},
{
@ -236,10 +236,10 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something_else=%{tx.something}%\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something_else=-5\"",
"SecRule TX:something_else \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:2,t:lowercase,t:none,setvar:TX.something_else=%{tx.something}%\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:3,t:lowercase,t:none,setvar:TX.something_else=-5\"",
"SecRule TX:something_else \"@contains to_test\" \"id:4,t:lowercase,t:none\""
]
}
]

22
test/test-cases/regression/collection-tx.json
View File

@ -55,8 +55,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=to_test\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something=to_test\"",
"SecRule TX \"@contains to_test\" \"id:2,t:lowercase,t:none\""
]
},
{
@ -115,8 +115,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something\"",
"SecRule TX \"@contains to_test\" \"id:2,t:lowercase,t:none\""
]
},
{
@ -175,9 +175,9 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:2,t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule TX \"@contains to_test\" \"id:3,t:lowercase,t:none\""
]
},
{
@ -236,10 +236,10 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"t:lowercase,t:none,setvar:TX.something=-5\"",
"SecRule TX \"@contains to_test\" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:1,t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:2,t:lowercase,t:none,setvar:TX.something=+10\"",
"SecRule REQUEST_HEADERS \"@contains PHPSESSID\" \"id:3,t:lowercase,t:none,setvar:TX.something=-5\"",
"SecRule TX \"@contains to_test\" \"id:4,t:lowercase,t:none\""
]
}
]

28
test/test-cases/regression/config-include-bad.json
View File

@ -4,14 +4,14 @@
"version_min":300000,
"title":"Include - bad rule",
"expected":{
"parser_error": "Rules error. File: config-include-bad.json. Line: 5. Column: 33."
"parser_error": "Rules error. File: test-cases/data/config_example3.txt. Line: 2. Column: 42. ops"
},
"rules":[
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"Include test-cases/data/config_example.txt",
"SecRule ARGS \"@missing_operator test\" \"id:9,pass,t:trim\""
"Include test-cases/data/config_example3.txt",
"SecRule ARGS \"@missing_operator test\" \"id:19,pass,t:trim\""
]
},
{
@ -26,7 +26,7 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"Include test-cases/data/config_example-ops.txt",
"SecRule ARGS \"@contains test\" \"id:9,pass,t:trim\""
"SecRule ARGS \"@contains test\" \"id:19,pass,t:trim\""
]
},
{
@ -41,7 +41,7 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"Include test-cases/data/config_example-ops-include.txt",
"SecRule ARGS \"@contains test\" \"id:9,pass,t:trim\""
"SecRule ARGS \"@contains test\" \"id:19,pass,t:trim\""
]
},
{
@ -56,7 +56,23 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"Include test-cases/data/config_example-bad-op-include.txt",
"SecRule ARGS \"@contains test\" \"id:9,pass,t:trim\""
"SecRule ARGS \"@contains test\" \"id:19,pass,t:trim\""
]
},
{
"enabled":1,
"version_min":300000,
"title":"Include - duplicate id",
"expected":{
"parser_error": "Rule id: 40.000000 is duplicated"
},
"rules":[
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"Include test-cases/data/config_example.txt",
"Include test-cases/data/config_example.txt",
"SecRule ARGS \"@missing_operator test\" \"id:19,pass,t:trim\""
]
}
]

3
test/test-cases/regression/config-include.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"Include test-cases/data/config_example.txt",
"Include test-cases/data/config_example2.txt",
"SecRule ARGS \"@contains test\" \"id:9,pass,t:trim\""
]
},
@ -207,7 +207,6 @@
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"id:1,pass,t:trim\"",
"Include test-cases/data/config_example.txt",
"Include test-cases/data/config_example.txt",
"SecRule ARGS \"@contains test\" \"id:3,pass,t:trim\""
]
},

8
test/test-cases/regression/debug_log.json
View File

@ -56,10 +56,10 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test\" \"pass\"",
"SecRule ARGS \"@contains /test.txt\" \"allow\"",
"SecRule ARGS:teste \"@contains /test.txt\" \" allow,deny\"",
"SecRule ARGS \"@contains /test.txt\" \"allow, allow,deny\""
"SecRule ARGS \"@contains test\" \"id:3,pass\"",
"SecRule ARGS \"@contains /test.txt\" \"id:4,allow\"",
"SecRule ARGS:teste \"@contains /test.txt\" \" id:1,allow,deny\"",
"SecRule ARGS \"@contains /test.txt\" \"allow, allow,id:2,deny\""
]
}

6
test/test-cases/regression/operator-ipMatchFromFile.json
View File

@ -42,7 +42,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_ADDR \"@ipMatchFromFile test-cases\/data\/ipMatchFromFile.txt\" \"phase:3,pass,t:trim\""
"SecRule REMOTE_ADDR \"@ipMatchFromFile test-cases\/data\/ipMatchFromFile.txt\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -88,7 +88,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_ADDR \"@ipMatchFromFile file-not-found.txt\" \"phase:3,pass,t:trim\""
"SecRule REMOTE_ADDR \"@ipMatchFromFile file-not-found.txt\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -134,7 +134,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_ADDR \"@ipMatchFromFile https://www.modsecurity.org/modsecurity-regression-test.txt\" \"phase:3,pass,t:trim\""
"SecRule REMOTE_ADDR \"@ipMatchFromFile https://www.modsecurity.org/modsecurity-regression-test.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/sec_component_signature.json
View File

@ -49,7 +49,7 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecComponentSignature \"OWASP_CRS/2.2.9\"",
"SecRule ARGS \"@contains test\" \"t:trim,block,auditlog\""
"SecRule ARGS \"@contains test\" \"id:1,t:trim,block,auditlog\""
]
}
]

2
test/test-cases/regression/transformation-none.json
View File

@ -56,7 +56,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_COOKIES \"@contains test \" \"t:lowercase,t:none\""
"SecRule REQUEST_COOKIES \"@contains test \" \"id:1,t:lowercase,t:none\""
]
},
{

4
test/test-cases/regression/transformations.json
View File

@ -56,7 +56,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test \" \"pass,t:trim\""
"SecRule ARGS \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -116,7 +116,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test \" \"pass,t:trim,t:lowercase\""
"SecRule ARGS \"@contains test \" \"id:1,pass,t:trim,t:lowercase\""
]
}
]

8
test/test-cases/regression/variable-ARGS.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test \" \"pass,t:trim\""
"SecRule ARGS \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -78,7 +78,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test \" \"pass,t:trim\""
"SecRule ARGS \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -124,7 +124,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -170,7 +170,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

14
test/test-cases/regression/variable-ARGS_COMBINED_SIZE.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"pass\""
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"id:1,pass\""
]
},
{
@ -78,7 +78,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"pass\""
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"id:1,pass\""
]
},
{
@ -124,7 +124,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"phase:3,pass\""
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"id:1,phase:3,pass\""
]
},
{
@ -170,7 +170,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"phase:3,pass,t:trim\""
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -216,7 +216,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"phase:3,pass,t:trim\""
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -259,7 +259,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"phase:3,pass,t:trim\""
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -302,7 +302,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"phase:3,pass,t:trim\""
"SecRule ARGS_COMBINED_SIZE \"@gt 10 \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-ARGS_GET.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_GET \"@contains test \" \"pass,t:trim\""
"SecRule ARGS_GET \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -78,7 +78,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_GET \"@contains test \" \"pass,t:trim\""
"SecRule ARGS_GET \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-ARGS_GET_NAMES.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_GET_NAMES \"@contains test \" \"pass,t:trim\""
"SecRule ARGS_GET_NAMES \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -78,7 +78,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_GET_NAMES \"@contains test \" \"pass,t:trim\""
"SecRule ARGS_GET_NAMES \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

8
test/test-cases/regression/variable-ARGS_NAMES.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_NAMES \"@contains test \" \"pass,t:trim\""
"SecRule ARGS_NAMES \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -78,7 +78,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_NAMES \"@contains test \" \"pass,t:trim\""
"SecRule ARGS_NAMES \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -124,7 +124,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_NAMES \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS_NAMES \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -170,7 +170,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_NAMES \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS_NAMES \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-ARGS_POST.json
View File

@ -42,7 +42,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_POST \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS_POST \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -88,7 +88,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_POST \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS_POST \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-ARGS_POST_NAMES.json
View File

@ -42,7 +42,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_POST_NAMES \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS_POST_NAMES \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -88,7 +88,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ARGS_POST_NAMES \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule ARGS_POST_NAMES \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-AUTH_TYPE.json
View File

@ -43,7 +43,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule AUTH_TYPE \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule AUTH_TYPE \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -90,7 +90,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule AUTH_TYPE \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule AUTH_TYPE \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

6
test/test-cases/regression/variable-DURATION.json
View File

@ -43,9 +43,9 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule DURATION \"@contains test \" \"phase:3,pass,t:trim\"",
"SecRule DURATION \"@contains test \" \"phase:3,pass,t:trim\"",
"SecRule DURATION \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule DURATION \"@contains test \" \"id:1,phase:3,pass,t:trim\"",
"SecRule DURATION \"@contains test \" \"id:2,phase:3,pass,t:trim\"",
"SecRule DURATION \"@contains test \" \"id:3,phase:3,pass,t:trim\""
]
}
]

6
test/test-cases/regression/variable-ENV.json
View File

@ -42,7 +42,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ENV:PATH \"@contains test\" \"phase:3,pass,t:trim\""
"SecRule ENV:PATH \"@contains test\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -88,7 +88,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ENV:TERM \"@contains test\" \"phase:3,pass,t:trim\""
"SecRule ENV:TERM \"@contains test\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -134,7 +134,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule ENV \"@contains test\" \"phase:3,pass,t:trim\""
"SecRule ENV \"@contains test\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-FILES.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule FILES \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule FILES \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-FILES_COMBINED_SIZE.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule FILES_COMBINED_SIZE \"@gt 70.000000\" \"phase:3,pass,t:trim\""
"SecRule FILES_COMBINED_SIZE \"@gt 70.000000\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-FILES_NAMES.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule FILES_NAMES \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule FILES_NAMES \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-FILES_SIZES.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule FILES_SIZES \"@gt 70.000000\" \"phase:3,pass,t:trim\""
"SecRule FILES_SIZES \"@gt 70.000000\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-FILES_TMP_CONTENT.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule FILES_TMP_CONTENT \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule FILES_TMP_CONTENT \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-FULL_REQUEST.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule FULL_REQUEST \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule FULL_REQUEST \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-FULL_REQUEST_LENGTH.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule FULL_REQUEST_LENGTH \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule FULL_REQUEST_LENGTH \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

44
test/test-cases/regression/variable-GEO.json
View File

@ -38,8 +38,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -81,8 +81,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -124,8 +124,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -167,8 +167,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -210,8 +210,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -253,8 +253,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -296,8 +296,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -339,8 +339,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -382,8 +382,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -425,8 +425,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
},
{
@ -468,8 +468,8 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecGeoLookupDb test-cases\/data\/geo\/GeoIPCity.dat",
"SecRule REMOTE_ADDR \"@geoLookup\" \"pass,t:trim\"",
"SecRule GEO \"@contains test \" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@geoLookup\" \"id:1,pass,t:trim\"",
"SecRule GEO \"@contains test \" \"id:2,pass,t:trim\""
]
}
]

8
test/test-cases/regression/variable-HIGHEST_SEVERITY.json
View File

@ -37,8 +37,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_ADDR \"@contains 200.249\" \"pass,t:trim,severity:0\"",
"SecRule HIGHEST_SEVERITY \"@lt 10\" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@contains 200.249\" \"id:1,pass,t:trim,severity:0\"",
"SecRule HIGHEST_SEVERITY \"@lt 10\" \"id:2,pass,t:trim\""
]
},
{
@ -79,8 +79,8 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_ADDR \"@contains 200.249\" \"pass,t:trim,severity:EMERGENCY\"",
"SecRule HIGHEST_SEVERITY \"@lt 10\" \"pass,t:trim\""
"SecRule REMOTE_ADDR \"@contains 200.249\" \"id:1,pass,t:trim,severity:EMERGENCY\"",
"SecRule HIGHEST_SEVERITY \"@lt 10\" \"id:2,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-INBOUND_DATA_ERROR.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule INBOUND_DATA_ERROR \"@eq 1\" \"phase:3,pass,t:trim\""
"SecRule INBOUND_DATA_ERROR \"@eq 1\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -99,7 +99,7 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecRequestBodyLimit 2",
"SecDebugLogLevel 9",
"SecRule INBOUND_DATA_ERROR \"@eq 1\" \"phase:3,pass,t:trim\""
"SecRule INBOUND_DATA_ERROR \"@eq 1\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-MODSEC_BUILD.json
View File

@ -42,7 +42,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MODSEC_BUILD \"@contains test\" \"phase:3,pass,t:trim\""
"SecRule MODSEC_BUILD \"@contains test\" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-MULTIPART_CRLF_LF_LINES.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_CRLF_LF_LINES \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_CRLF_LF_LINES \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -118,7 +118,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_CRLF_LF_LINES \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_CRLF_LF_LINES \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-MULTIPART_FILENAME.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_FILENAME \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_FILENAME \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -118,7 +118,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_FILENAME \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_FILENAME \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-MULTIPART_NAME.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_NAME \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_NAME \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -118,7 +118,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_NAME \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_NAME \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
}
]

12
test/test-cases/regression/variable-MULTIPART_STRICT_ERROR.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -118,7 +118,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -179,7 +179,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -240,7 +240,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -301,7 +301,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -362,7 +362,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_STRICT_ERROR \"@contains 0\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-MULTIPART_UNMATCHED_BOUNDARY.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule MULTIPART_UNMATCHED_BOUNDARY \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule MULTIPART_UNMATCHED_BOUNDARY \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-OUTBOUND_DATA_ERROR.json
View File

@ -37,7 +37,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule OUTBOUND_DATA_ERROR \"@eq 1\" \"phase:4,pass,t:trim\""
"SecRule OUTBOUND_DATA_ERROR \"@eq 1\" \"id:1,phase:4,pass,t:trim\""
]
},
{
@ -113,7 +113,7 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecResponseBodyLimit 2",
"SecDebugLogLevel 9",
"SecRule OUTBOUND_DATA_ERROR \"@eq 1\" \"phase:4,pass,t:trim\""
"SecRule OUTBOUND_DATA_ERROR \"@eq 1\" \"id:1,phase:4,pass,t:trim\""
]
}
]

6
test/test-cases/regression/variable-PATH_INFO.json
View File

@ -42,7 +42,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule PATH_INFO \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule PATH_INFO \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -88,7 +88,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule PATH_INFO \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule PATH_INFO \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -134,7 +134,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule PATH_INFO \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule PATH_INFO \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-QUERY_STRING.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule QUERY_STRING \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule QUERY_STRING \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-REMOTE_ADDR.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_ADDR \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REMOTE_ADDR \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -82,7 +82,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_ADDR \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REMOTE_ADDR \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-REMOTE_HOST.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_HOST \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REMOTE_HOST \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -82,7 +82,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_HOST \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REMOTE_HOST \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-REMOTE_PORT.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_PORT \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REMOTE_PORT \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -82,7 +82,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REMOTE_PORT \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REMOTE_PORT \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_BASENAME.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_BASENAME \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REQUEST_BASENAME \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_BODY.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_BODY \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule REQUEST_BODY \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_BODY_LENGTH.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_BODY_LENGTH \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule REQUEST_BODY_LENGTH \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

6
test/test-cases/regression/variable-REQUEST_COOKIES.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_COOKIES \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_COOKIES \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -80,7 +80,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_COOKIES \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_COOKIES \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -122,7 +122,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_COOKIES \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_COOKIES \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

6
test/test-cases/regression/variable-REQUEST_COOKIES_NAMES.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_COOKIES_NAMES \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_COOKIES_NAMES \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -80,7 +80,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_COOKIES_NAMES \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_COOKIES_NAMES \"@contains test \" \"id:1,pass,t:trim\""
]
},
{
@ -122,7 +122,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_COOKIES_NAMES \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_COOKIES_NAMES \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_FILENAME.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_FILENAME \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule REQUEST_FILENAME \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_HEADERS.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule REQUEST_HEADERS \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_HEADERS_NAMES.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS_NAMES \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule REQUEST_HEADERS_NAMES \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_LINE.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_LINE \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_LINE \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_METHOD.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_METHOD \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_METHOD \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_PROTOCOL.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_PROTOCOL \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_PROTOCOL \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_URI.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_URI \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_URI \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-REQUEST_URI_RAW.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_URI_RAW \"@contains test \" \"pass,t:trim\""
"SecRule REQUEST_URI_RAW \"@contains test \" \"id:1,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-RESPONSE_BODY.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule RESPONSE_BODY \"@contains test \" \"phase:4,pass,t:trim\""
"SecRule RESPONSE_BODY \"@contains test \" \"id:1,phase:4,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-RESPONSE_CONTENT_LENGTH.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule RESPONSE_CONTENT_LENGTH \"@contains test \" \"phase:4,pass,t:trim\""
"SecRule RESPONSE_CONTENT_LENGTH \"@contains test \" \"id:1,phase:4,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-RESPONSE_CONTENT_TYPE.json
View File

@ -38,7 +38,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule RESPONSE_CONTENT_TYPE \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule RESPONSE_CONTENT_TYPE \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-RESPONSE_HEADERS.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule RESPONSE_HEADERS \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule RESPONSE_HEADERS \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-RESPONSE_HEADERS_NAMES.json
View File

@ -57,7 +57,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule RESPONSE_HEADERS_NAMES \"@contains small_text_file.txt\" \"phase:3,pass,t:trim\""
"SecRule RESPONSE_HEADERS_NAMES \"@contains small_text_file.txt\" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-SERVER_ADDR.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule SERVER_ADDR \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule SERVER_ADDR \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -82,7 +82,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule SERVER_ADDR \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule SERVER_ADDR \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-SERVER_PORT.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule SERVER_PORT \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule SERVER_PORT \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
},
{
@ -82,7 +82,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule SERVER_PORT \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule SERVER_PORT \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_DAY.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_DAY \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_DAY \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_EPOCH.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_EPOCH \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_EPOCH \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_HOUR.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_HOUR \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_HOUR \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_MIN.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_MIN \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_MIN \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_MON.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_MON \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_MON \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_SEC.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_SEC \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_SEC \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_WDAY.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_WDAY \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_WDAY \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

2
test/test-cases/regression/variable-TIME_YEAR.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule TIME_YEAR \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule TIME_YEAR \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

4
test/test-cases/regression/variable-TX.json
View File

@ -40,7 +40,7 @@
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRequestBodyAccess On",
"SecRule RESPONSE_BODY \"@rx ([0-9]+)\" \"phase:4,capture,id:105\"",
"SecRule RESPONSE_BODY \"@rx ([0-9]+)\" \"id:1,phase:4,capture,id:105\"",
"SecRule TX \"@rx ([A-z]+)\" \"phase:4,id:106\""
]
},
@ -80,7 +80,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS \"@rx ([A-z]+)\" \"log,pass,capture,id:14\"",
"SecRule REQUEST_HEADERS \"@rx ([A-z]+)\" \"id:1,log,pass,capture,id:14\"",
"SecRule TX:0 \"@rx ([A-z]+)\" \"id:15\""
]
}

2
test/test-cases/regression/variable-UNIQUE_ID.json
View File

@ -39,7 +39,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule UNIQUE_ID \"@contains test \" \"phase:3,pass,t:trim\""
"SecRule UNIQUE_ID \"@contains test \" \"id:1,phase:3,pass,t:trim\""
]
}
]

6
test/test-cases/regression/variable-variation-count.json
View File

@ -55,7 +55,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule &REQUEST_HEADERS \"@contains test \" \"t:lowercase,t:none\""
"SecRule &REQUEST_HEADERS \"@contains test \" \"id:1,t:lowercase,t:none\""
]
},
{
@ -114,7 +114,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule &REQUEST_HEADERS:Accept \"@contains test \" \"t:lowercase,t:none\""
"SecRule &REQUEST_HEADERS:Accept \"@contains test \" \"id:1,t:lowercase,t:none\""
]
},
{
@ -173,7 +173,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule &REQUEST_HEADERS:missing \"@contains test \" \"t:lowercase,t:none\""
"SecRule &REQUEST_HEADERS:missing \"@contains test \" \"id:1,t:lowercase,t:none\""
]
}
]

4
test/test-cases/regression/variable-variation-exclusion.json
View File

@ -55,7 +55,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS|!REQUEST_HEADERS:Accept|!REMOTE_HOST \"@contains test \" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS|!REQUEST_HEADERS:Accept|!REMOTE_HOST \"@contains test \" \"id:1,t:lowercase,t:none\""
]
},
{
@ -114,7 +114,7 @@
"SecRuleEngine On",
"SecDebugLog \/tmp\/modsec_debug.log",
"SecDebugLogLevel 9",
"SecRule REQUEST_HEADERS|!REQUEST_HEADERS \"@contains test \" \"t:lowercase,t:none\""
"SecRule REQUEST_HEADERS|!REQUEST_HEADERS \"@contains test \" \"id:1,t:lowercase,t:none\""
]
}
]