From e4bae30942453718ad16872932427c9f79eabd25 Mon Sep 17 00:00:00 2001
From: b1v1r <b1v1r@9017d574-64ec-4062-9424-5e00b32a252b>
Date: Fri, 5 Feb 2010 18:18:18 +0000
Subject: [PATCH] Added TX:MSC_* flags to minimal conf file.

---
 modsecurity.conf-minimal | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/modsecurity.conf-minimal b/modsecurity.conf-minimal
index 7afce654..091da85d 100644
--- a/modsecurity.conf-minimal
+++ b/modsecurity.conf-minimal
@@ -65,3 +65,12 @@ IH %{MULTIPART_FILE_LIMIT_EXCEEDED}'"
 # Did we see anything that might be a boundary?
 SecRule MULTIPART_UNMATCHED_BOUNDARY "!@eq 0" \
 "phase:2,t:none,log,deny,msg:'Multipart parser detected a possible unmatched boundary.'"
+
+# Some internal errors will set flags in TX and we will need to look for these.
+# All of these are prefixed with "MSC_".  The following flags currently exist:
+#
+# MSC_PCRE_LIMITS_EXCEEDED: PCRE match limits were exceeded.
+#
+SecRule TX:/^MSC_/ "!@streq 0" \
+        "phase:2,t:none,deny,msg:'ModSecurity internal error flagged: %{MATCHED_VAR_NAME}'"
+