github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-13 15:07:10 +03:00
Code Issues Packages Projects Releases Wiki Activity
742 Commits 55 Branches 109 Tags
11a4e99d18647a807e080747cfc9de170bc58d29
Commit Graph

241 Commits

Author SHA1 Message Date
b1v1r
3afae2ff91 Attempt to handle Apache filter error codes instead of incorrectly looking them up as APR error codes. 2009-08-27 07:38:26 +00:00
b1v1r
7333260b9b Added SecAuditLogDirMode and SecAuditLogFileMode (MODSEC-82). 
Cleaned up SecUploadFileMode implementation.
 2009-08-25 00:29:56 +00:00
b1v1r
9934c5c26a Cleanup/simplify the build/find_* scripts. 2009-08-13 06:25:06 +00:00
b1v1r
d25d740c94 Update version for 2.5.10-dev2. 2009-08-12 22:24:13 +00:00
b1v1r
0680e9e71a Fixed crash on configuration if SecMarker is used before any rules. 
Fixed SecRuleUpdateActionById so that it will work on chain starters (MODSEC-37).
 2009-08-12 21:41:15 +00:00
b1v1r
9a5cf44fda Cleanup build for mlogc (MODSEC-83). 2009-08-12 18:43:57 +00:00
b1v1r
040f53733b Update version release dates for 2.5.10-dev1. 2009-07-27 22:27:26 +00:00
b1v1r
206eb02bd1 Allow mlogc to periodically flush memory pools (MODSEC-68). 2009-07-24 05:04:55 +00:00
b1v1r
b77784c3ee Always log the message in the auditlog if "auditlog" is used (MODSEC-78). 2009-07-23 21:26:19 +00:00
b1v1r
6ee2c6e5f8 Update CHANGES. 2009-07-22 17:44:37 +00:00
b1v1r
64fcb6e129 Update CHANGES with fix for MODSEC-47. 2009-06-15 21:09:14 +00:00
b1v1r
c99f8fa2c9 Escape and reformat XML errors/warnings to avoid breaking audit log format. 2009-05-31 08:37:47 +00:00
b1v1r
b5204a86ab Fixed an issue where @pm was not ignoring case. 
Documented case insensitivity of @pm.
 2009-05-29 20:46:24 +00:00
b1v1r
13a6b73f80 Truncate long parameters in log message (MODSEC-39). 2009-05-21 06:19:36 +00:00
b1v1r
c13980062e Correctly resolve chained rule actions in logs (MODSEC-53). 2009-05-21 05:32:02 +00:00
b1v1r
3c0cfbd3ef Cleanup code for AIX and better non-gcc support (MODSEC-55). 2009-05-16 10:34:57 +00:00
b1v1r
6359a86a38 Populate GEO:COUNTRY_NAME and GEO:COUNTRY_CONTINENT as documented (MODSEC-45). 
Handle a newer geo database, avoiding a potential crash.
Allow checking &GEO "@eq 0" for a failed @geoLookup.
 2009-05-16 07:44:58 +00:00
b1v1r
a61db59438 Fixed mlogc global mutex locking issue (MODSEC-20 and maybe MODSEC-47). 
Increased default mlogc StartupDelay to 5000 ms.
Added more verbose debugging to mlogc error log level 4 and 5.
 2009-05-16 03:56:16 +00:00
b1v1r
8a11b7cee7 Cleaned up build dependencies and configure options. 2009-04-01 18:51:10 +00:00
b1v1r
9df6afce9c Update CHANGES and fix invalid merge in doc. 2009-03-12 06:12:22 +00:00
b1v1r
97836ef503 Added ability to specify the config script directly using --with-apr and --with-apu. 2009-03-06 05:43:03 +00:00
b1v1r
2370606d70 Updated copyright year to 2009. 2009-03-06 05:32:03 +00:00
b1v1r
993c718eb0 Added macro expansion for append/prepend action. 2009-03-06 05:28:12 +00:00
b1v1r
4c7b251236 Merge in doc changes from trunk. 2009-03-06 04:55:28 +00:00
b1v1r
fa96c349e5 Merge 2.5 changes. 2009-03-05 21:50:55 +00:00
b1v1r
0acef426d5 Add a verbose output option to build. 
Cleanup mlogc build and warnings.
 2009-03-05 21:49:41 +00:00
b1v1r
b566ad5a17 Prepare 2.5.8 release fixing MODSEC-27. 2009-03-05 17:57:50 +00:00
b1v1r
7939ef559c Merged in CHANGES updates from r1238 for MODSEC-29. 2009-03-03 21:08:17 +00:00
(no author)
4a336dadf2 Removed an invalid "Internal error" message forcing auditing of a request (MODSEC-29). 
Cleaned up error messages prior to using send_error_bucket().
 2008-10-21 17:45:18 +00:00
brectanus
4be57ffad5 Change version to 2.5.7 for release. 2008-09-24 18:51:06 +00:00
brectanus
be4e8438dd Update versions for tagging 2.5.7-rc1. 2008-09-17 17:00:00 +00:00
brectanus
c3c822ea01 Revert r1205 as it was fixed in mod_jk upstream. 2008-09-17 16:54:31 +00:00
brectanus
d8be195989 Revert r1205 as it was fixed in mod_jk upstream. 2008-09-17 16:54:31 +00:00
ivanr
7b0e71f929 CHANGES text describing when REQUEST_BODY is populated was not accurate. 2008-09-17 10:59:11 +00:00
ivanr
c1d3333ff8 CHANGES text describing when REQUEST_BODY is populated was not accurate. 2008-09-17 10:59:11 +00:00
brectanus
3848ff5b36 Worked around mod_jk issue where a 401 response was not including the WWW-Authentication header (MODSEC-16). 2008-09-15 19:51:06 +00:00
brectanus
f173301b39 Worked around mod_jk issue where a 401 response was not including the WWW-Authentication header (MODSEC-16). 2008-09-15 19:51:06 +00:00
brectanus
309510d70b Change from ctl:requestBodyBuffering to ctl:forceRequestBodyVariable. 2008-09-10 17:11:20 +00:00
brectanus
d257fd7910 Change from ctl:requestBodyBuffering to ctl:forceRequestBodyVariable. 2008-09-10 17:11:20 +00:00
brectanus
f20059b009 Make sure we fail to validate DTD/schema after a parsing error. Fixes MODSEC-5. 2008-09-03 22:16:42 +00:00
brectanus
28bda503a3 Make sure we fail to validate DTD/schema after a parsing error. Fixes MODSEC-5. 2008-09-03 22:16:42 +00:00
brectanus
34798e9abe Allow ability to force request body buffering to memory. Fixes MODSEC-2. 2008-09-03 20:42:28 +00:00
brectanus
f2f160e10c Allow ability to force request body buffering to memory. Fixes MODSEC-2. 2008-09-03 20:42:28 +00:00
brectanus
139d651bbf Updated the CHANGES. 2008-09-03 18:06:14 +00:00
brectanus
a25269a5e5 Updated the CHANGES. 2008-09-03 18:06:14 +00:00
brectanus
20cc395510 Added mlogc source. 2008-09-02 23:10:36 +00:00
brectanus
c47c3583e0 Added mlogc source. 2008-09-02 23:10:36 +00:00
brectanus
d419a21682 Update CHANGES. 
Sync up docs.
 2008-08-15 20:25:27 +00:00
brectanus
b6657a4b93 Update CHANGES. 
Sync up docs.
 2008-08-15 20:25:27 +00:00
brectanus
492ffd9897 Sync up branches/2.5.x and trunk. 2008-07-31 22:36:24 +00:00