github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-16 07:56:12 +03:00
Code Issues Packages Projects Releases Wiki Activity

Adds Status test case with the SecServerSignature being used

Browse Source 
If SecServerSignature is used ModSecurity should send the real data, not the
one informed to SecServerSignature.
Originally reported by: Linas
This commit is contained in:
Felipe Zimmerle 2014-04-16 11:43:22 -07:00
parent 2615a5dfc8
commit cee205b109
1 changed files with 24 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
tests/regression/misc/20-status-engine.pl → tests/regression/misc/20-status-engine.t
View File

@ -46,4 +46,28 @@
"arg1=val1&arg2=val2", "arg1=val1&arg2=val2",
), ),
}, },
# On and SecServerSignature
{
type => "misc",
comment => "SecStatusEngine On using SecServerSignature",
conf => qq(
SecRuleEngine On
SecServerSignature "SpiderServer v0.1a"
SecStatusEngine On
),
match_log => {
error => [ qr/ModSecurity: StatusEngine call successfully sent/, 1],
-error => [ qr/StatusEngine call: .*SpiderServer v0.1a.*/, 1],
},
match_response => {
status => qr/^200$/,
},
request => new HTTP::Request(
POST => "http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt",
[
"Content-Type" => "application/x-www-form-urlencoded",
],
"arg1=val1&arg2=val2",
),
},