github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 05:45:59 +03:00
Code Issues Packages Projects Releases Wiki Activity
561 Commits 55 Branches 109 Tags
Commit Graph

561 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
b1v1r
12b9bcd33a Merge 2.5.x changes into trunk. 2009-05-21 06:26:26 +00:00
b1v1r
ffc5d968e6 Merge 2.5.x changes into trunk. 2009-05-21 06:18:18 +00:00
b1v1r
944a08822f Merged 2.5.x changes back to trunk. 2009-05-19 06:40:21 +00:00
b1v1r
31ddf4c86c Merge 2.5.x changes into trunk. 2009-05-16 11:19:10 +00:00
b1v1r
a16eb9677c Merge 2.5.x changes into trunk. 2009-05-16 10:42:32 +00:00
b1v1r
9d26b16e23 Merge 2.5.x changes into trunk. 2009-05-16 07:54:17 +00:00
b1v1r
48981bb7c8 Merge in changes from 2.5.x branch. 2009-05-16 04:51:25 +00:00
b1v1r
5fcca65fca Merge 2.5.x build changes back to trunk. 2009-04-22 17:41:33 +00:00
b1v1r
84099df54b Metadata. 2009-03-31 17:26:57 +00:00
b1v1r
25a394452a Cleanup docs. 2009-03-31 17:25:47 +00:00
b1v1r
e30176125a Merge in 2.5 doc changes. 
Cleanup doc formatting.
 2009-03-31 17:24:25 +00:00
b1v1r
f905bf083f Cleanup the API examples and add more docs. 2009-03-31 17:09:05 +00:00
b1v1r
dc0a2161ac Merge 2.5.9 changes into trunk. 2009-03-12 15:31:10 +00:00
b1v1r
fa96c349e5 Merge 2.5 changes. 2009-03-05 21:50:55 +00:00
b1v1r
a06d8f8ce7 Fixed strict compiler warnings for mlogc. 
Updated mlogc copyright year.
 2009-02-18 18:53:12 +00:00
b1v1r
bef5c53c09 Removed "make -C ..." in favor of a more portable method. 
Added verbose output option to configure.
 2009-02-18 18:01:39 +00:00
ivanr
4f3c9d991a Small clarifications. 2008-12-03 15:07:49 +00:00
ivanr
9c3c0d8c8a Update the reference manual to refer to the new data formats documentation. 2008-12-01 10:43:26 +00:00
ivanr
fd5cf18ca4 Add the data formats documentation. 2008-12-01 10:39:46 +00:00
b1v1r
facacae238 Fix a typo in the SecRuleInheritance example. 2008-11-13 00:28:29 +00:00
(no author)
c012db7e60 Make a note of configure options that can affect performance (MODSEC-28). 2008-10-21 17:46:20 +00:00
(no author)
4a336dadf2 Removed an invalid "Internal error" message forcing auditing of a request (MODSEC-29). 
Cleaned up error messages prior to using send_error_bucket().
 2008-10-21 17:45:18 +00:00
brectanus
c3c822ea01 Revert r1205 as it was fixed in mod_jk upstream. 2008-09-17 16:54:31 +00:00
ivanr
becf694033 Updated REQUEST_BODY documentation. 2008-09-17 11:04:12 +00:00
ivanr
7b0e71f929 CHANGES text describing when REQUEST_BODY is populated was not accurate. 2008-09-17 10:59:11 +00:00
brectanus
3848ff5b36 Worked around mod_jk issue where a 401 response was not including the WWW-Authentication header (MODSEC-16). 2008-09-15 19:51:06 +00:00
brectanus
67c48bfdfb Added ability to use ctl:requestBodyAccess=off in phase:1 to avoid limit check. 
Added regression tests for this as well.
 2008-09-10 19:45:13 +00:00
brectanus
c5e258f0ba Added additional check for XML well formed. 2008-09-10 18:32:24 +00:00
brectanus
b2c7424a96 Added a comment. 2008-09-10 17:39:18 +00:00
brectanus
309510d70b Change from ctl:requestBodyBuffering to ctl:forceRequestBodyVariable. 2008-09-10 17:11:20 +00:00
ivanr
5740f7a3eb Tidy up. 2008-09-10 14:15:37 +00:00
ivanr
2ee69ce468 Document css_inplace_decode(). 2008-09-10 12:44:41 +00:00
ivanr
2f7ff8f7ab Tidy up. 2008-09-10 11:34:16 +00:00
brectanus
ec49ce05c7 Updated docs to point out some features are not available on all OSes. MODSEC-9 2008-09-05 16:18:00 +00:00
brectanus
ac767de86e Typo in SecRuleUpdateActionById example. 2008-09-05 15:29:25 +00:00
brectanus
f20059b009 Make sure we fail to validate DTD/schema after a parsing error. Fixes MODSEC-5. 2008-09-03 22:16:42 +00:00
brectanus
f5af5ef429 Remove declaration of an unused variable. 2008-09-03 21:20:06 +00:00
brectanus
34798e9abe Allow ability to force request body buffering to memory. Fixes MODSEC-2. 2008-09-03 20:42:28 +00:00
brectanus
139d651bbf Updated the CHANGES. 2008-09-03 18:06:14 +00:00
brectanus
deb6a816b4 Fixed MODSEC-2 by using the msr->hostname (ap_get_server_name(r)) vs r->hostname in the log. 2008-09-02 23:43:15 +00:00
brectanus
20cc395510 Added mlogc source. 2008-09-02 23:10:36 +00:00
ivanr
2818e66a95 Tidy up the code for the performance-measurement mode. Remove the per-phase measurements, which don't seem to work (at least not in my case). 2008-09-01 09:38:30 +00:00
ivanr
acec75be45 Make PERFORMANCE_MEASUREMENT more accurate by removing stray msr_log() invocation. Clean the code a bit. 2008-08-29 16:09:59 +00:00
ivanr
9997cee04a Clarified that SecMarker IDs are the same thing as rule IDs. 2008-08-27 14:46:31 +00:00
ivanr
1b977e6106 Clarifications in response to comments from Kiyohiko Kajihara. 2008-08-27 12:22:56 +00:00
brectanus
a686b0633a Update configure to better find lua libs. 2008-08-18 16:00:29 +00:00
brectanus
ab5cd92618 Update a regression test due to changed error message. 2008-08-15 21:04:12 +00:00
brectanus
7eef5ce7ae Update test stup with new msr_log_* wrappers. 2008-08-15 20:45:28 +00:00
brectanus
d419a21682 Update CHANGES. 
Sync up docs.
 2008-08-15 20:25:27 +00:00
brectanus
225339525d Allow disabling processing of request body size limit in phase 1. See #518. 2008-08-15 20:21:25 +00:00