github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-13 15:07:10 +03:00
Code Issues Packages Projects Releases Wiki Activity
791 Commits 55 Branches 109 Tags
658966a433db0006017f3e3ce3256b48dc972a3f
Commit Graph

791 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
b1v1r
658966a433 Remove ability to use relative paths to a piped audit logger. 2010-02-14 22:31:59 +00:00
b1v1r
cb2a82fa28 Fix memory leak freeing compiled regex (MODSEC-138). 2010-02-14 22:31:16 +00:00
b1v1r
b5392b2f7f Added more documentation for pcre limits. 2010-02-11 17:44:10 +00:00
b1v1r
5769afbef3 Use #pragma instead of #warning as it is not portable and treated as an error on Windows. 2010-02-11 17:44:02 +00:00
b1v1r
1b74aa52a7 Update versions for next release. 2010-02-11 17:43:50 +00:00
b1v1r
6748e04996 Cleanup path nomalization routine and add some further regression tests (MODSEC-123). 2010-02-05 18:38:56 +00:00
b1v1r
04fe141c73 Fixed SecUploadFileMode to set the correct mode (MODSEC-129). 2010-02-05 18:26:43 +00:00
b1v1r
b8509495d9 Fixed nolog,auditlog/noauditlog/nolog controls for disruptive actions (MODSEC-78, MODSEC-130) 2010-02-05 18:24:44 +00:00
b1v1r
cd730842da Fixed compiles using PCRE pre v6.5 (ie Apache includes 5.0) 2010-02-05 18:23:18 +00:00
b1v1r
81105d03c4 Update 2.5.12 release date due to another minor change. 2010-02-05 18:22:13 +00:00
b1v1r
fa483ce717 Added additional file info definitions introduced in APR 0.9.5 so that we will work with older APRs (IBM HTTP Server v6). 2010-02-05 18:21:09 +00:00
b1v1r
967741dbe3 Change version to 2.5.12. 2010-02-05 18:19:23 +00:00
b1v1r
e4bae30942 Added TX:MSC_* flags to minimal conf file. 2010-02-05 18:18:18 +00:00
b1v1r
ade2c6bcf5 Cleanup some regression tests. 2010-02-05 18:17:18 +00:00
b1v1r
513c87ee45 Added SecUploadFileLimit (MODSEC-116). 2010-02-05 18:15:31 +00:00
b1v1r
3fccc35a5a Rewrote path normalization routine (MODSEC-123). 2010-02-05 18:14:08 +00:00
b1v1r
bc1fa4b15d Fixed doc copy/paste errors and cleanup formatting. 2010-02-05 18:13:14 +00:00
b1v1r
4b6f8eabe1 Trim whitespace around phrases used with @pmFromFile and allow for both LF and CRLF terminated lines (MODSEC-126). 2010-02-05 18:12:53 +00:00
b1v1r
5fed94b8e6 Code/doc cleanup. 2010-02-05 18:12:07 +00:00
b1v1r
e6699ca7bf Allow for more robust parsing for multipart header folding. Reported by Sogeti/ESEC R&D (MODSEC-118). Added additional multipart regression tests. 2010-02-05 18:11:36 +00:00
b1v1r
f33137ea66 Make sure to set variable name length. 2010-02-05 18:10:09 +00:00
b1v1r
589274903d Added PCRE limits and studying by default to help alleviate REDoS reported by Sogeti/ESEC R&D (MODSEC-119). 2010-02-05 18:09:19 +00:00
b1v1r
d66760d09c Fixed memory leak in v1 cookie parser reported by Sogeti/ESEC R&D (MODSEC-121). 2010-02-05 18:07:56 +00:00
b1v1r
7262e026d2 Now support macro expansion in numeric operators @eq, @ge, @lt, etc. (MODSEC-109). 2010-02-03 23:50:38 +00:00
b1v1r
bfe41347d2 Update copyright to 2010. 2010-02-03 23:50:24 +00:00
b1v1r
fdade740d4 Reserve Ivan an ID block. 2009-12-21 16:33:27 +00:00
ivanr
13d0245b6b Document changes 2009-12-14 18:49:18 +00:00
ivanr
34ee235d73 Change SECACTION_TARGETS and SECMARKET_TARGETS to REMOTE_ADDR 2009-12-13 08:43:56 +00:00
b1v1r
3ca9a03c7e Fix typo in configure.in (MODSEC-101). 2009-12-01 16:54:03 +00:00
b1v1r
92e6c81530 Fix CHANGES. 2009-11-06 21:47:34 +00:00
b1v1r
1f9bd13efc Fix quoting for demo page. 2009-11-06 21:40:54 +00:00
b1v1r
efc9d4e68f Fixed parsing quoted strings in multipart Content-Disposition headers (part2). 2009-11-05 19:49:30 +00:00
b1v1r
d33f656b93 Fixed parsing quoted strings in multipart Content-Disposition headers. 2009-11-05 19:36:32 +00:00
b1v1r
92cff5c58e Cleanup persistent locking (MODSEC-97). 2009-11-05 01:26:17 +00:00
b1v1r
68b95b3c24 Cleanup mlogc logging and add note recommending against gnutls for SSL/TLS. 2009-11-04 06:58:50 +00:00
b1v1r
a73da836e2 Do not log output filter errors to the error log (MODSEC-70). 2009-11-04 00:12:33 +00:00
b1v1r
76969fea1d Moved output filter to run before other stock filters (MODSEC-89). 2009-11-03 23:49:36 +00:00
b1v1r
b2f8dc1941 Remove some Apache build files that were not required. 
Fix compiler warning causing CI build server to report errors with older compiler.
 2009-10-21 18:06:37 +00:00
b1v1r
fd23b6486f Added a --disable-errors to configure so that you can still build mlogc without httpd/apxs. 2009-10-21 16:31:29 +00:00
ivanr
af5c47f513 Do not log debugging message as a warning (MODSEC-91) 2009-09-29 10:00:51 +00:00
b1v1r
b5957cde5e Update document generation. 2009-09-25 16:33:37 +00:00
b1v1r
c8e5a2dcd6 Add missing autotool generated files. 2009-09-24 19:26:57 +00:00
b1v1r
9b13fec05e Cleanup apu and lua find macros. 2009-09-22 06:41:22 +00:00
b1v1r
e39b46e0cc Update Windows Makefile.win for mlogc. 2009-09-21 15:40:54 +00:00
b1v1r
cb03e372da More updates for Windows - many thanks to apachelounge.com for these. 2009-09-20 03:08:45 +00:00
b1v1r
a6710d0dd0 Use int instead of mode_t to appease Windows. 2009-09-19 22:56:18 +00:00
b1v1r
0c7559ee6a Cleanup mlogc so it builds on Windows. 2009-09-18 17:57:59 +00:00
b1v1r
dc548f01cf Cleanup test scripts. 2009-09-18 08:34:12 +00:00
b1v1r
c8b28800d2 Cleanup CHANGELOG and version for 2.5.10 release. 2009-09-18 07:36:18 +00:00
b1v1r
11a4e99d18 Remove extraneous version number causing 2.5.100 to be displayed. 2009-09-03 18:54:22 +00:00