github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-13 15:07:10 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fix example for drop action in docs.

Browse Source
This commit is contained in:
b1v1r
2009-04-17 16:48:36 +00:00
parent 630c7a634d
commit 36963dd935
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
doc/modsecurity2-apache-reference.xml
View File

@@ -6,7 +6,7 @@
Manual</title> Manual</title>
<articleinfo> <articleinfo>
<releaseinfo>Version 2.5.9 (March 5, 2009)</releaseinfo> <releaseinfo>Version 2.5.10-dev1 (April 17, 2009)</releaseinfo>
<copyright> <copyright>
<year>2004-2009</year> <year>2004-2009</year>
@@ -4548,11 +4548,11 @@ SecRule REQUEST_CONTENT_TYPE ^text/xml nolog,pass,<emphasis>ctl:requestBodyProce
threshold of more than 25 attempts in 2 minutes, it will DROP subsequent threshold of more than 25 attempts in 2 minutes, it will DROP subsequent
connections.</para> connections.</para>
<programlisting format="linespecific">SecAction initcol:ip=%{REMOTE_ADDR},nolog <programlisting format="linespecific">SecAction phase:1,initcol:ip=%{REMOTE_ADDR},nolog
SecRule ARGS:login "!^$" \ SecRule ARGS:login "!^$" \
nolog,phase:1,setvar:ip.auth_attempt=+1,deprecatevar:ip.auth_attempt=20/120 nolog,phase:1,setvar:ip.auth_attempt=+1,deprecatevar:ip.auth_attempt=20/120
SecRule IP:AUTH_ATTEMPT "@gt 25" \ SecRule IP:AUTH_ATTEMPT "@gt 25" \
log,<emphasis>drop</emphasis>,phase:1,msg:'Possible Brute Force Attack"</programlisting> "log,<emphasis>drop</emphasis>,phase:1,msg:'Possible Brute Force Attack'"</programlisting>
<para><emphasis>Note</emphasis></para> <para><emphasis>Note</emphasis></para>