github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-13 15:07:10 +03:00
Code Issues Packages Projects Releases Wiki Activity

Remove query string from error log. See #447.

Browse Source
This commit is contained in:
brectanus
2008-01-23 18:12:59 +00:00
parent a996e3a52b
commit f427f2a120
2 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
CHANGES
View File

@@ -1,3 +1,10 @@
23 Jan 2008 - 2.1.6-rc1
-----------------------
* No longer log the query portion of the URI in the error log as
it may contain sensitive data.
10 Jan 2008 - 2.1.5
-------------------

2
apache2/apache2_util.c
View File

@@ -230,7 +230,7 @@ void internal_log(request_rec *r, directory_config *dcfg, modsec_rec *msr,
ap_log_error(APLOG_MARK, APLOG_ERR | APLOG_NOERRNO, 0, r->server,
"[client %s] ModSecurity: %s%s [uri \"%s\"]%s", r->connection->remote_ip, str1,
hostname, log_escape(msr->mp, r->unparsed_uri), unique_id);
hostname, log_escape(msr->mp, r->uri), unique_id);
/* Add this message to the list. */
if (msr != NULL) {