github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-16 07:56:12 +03:00
Code Issues Packages Projects Releases Wiki Activity
760 Commits 55 Branches 109 Tags
Commit Graph

593 Commits

Author SHA1 Message Date
ivanr
7916942fe3 Remove unused variable 2009-12-07 11:45:23 +00:00
ivanr
76583d80fa Added the missing log messages for the ctl action; optimised the existing log messages (MODSEC-99). 2009-12-04 23:50:51 +00:00
ivanr
839b7f81e0 Removed the obsolete PDF UXSS functionality (MODSEC-96). 2009-12-04 23:33:47 +00:00
ivanr
853b1f9fc8 Convert 'normalise' into 'normalize' throughout, but support the previous version for backward compatibility (MODSEC-103) 2009-12-04 23:15:44 +00:00
ivanr
cb8b76f4ef Process phase 1 in the same Apache hook as phase 2 (MODSEC-98) 2009-11-07 10:14:40 +00:00
b1v1r
3b12989683 Merge 2.5.x changes into trunk. 2009-11-07 00:06:26 +00:00
b1v1r
b01f8190e4 Merged 2.5.x changes for 2.5.11 into trunk. 2009-11-06 18:38:15 +00:00
ivanr
8fe278e845 Change 'sanitise' to 'sanitize' everywhere, preserving the 'sanitise' action variants for backward compatibility. 2009-10-29 17:57:18 +00:00
b1v1r
6d83f91b2b More updates to build, removing Apache based build files. 2009-10-21 18:32:52 +00:00
b1v1r
9a526c0900 Merge in 2.5.x build changes into trunk. 2009-10-21 18:14:14 +00:00
b1v1r
55f54e17e5 Merge 2.5.x changes into trunk. 2009-10-21 17:15:40 +00:00
ivanr
a1a67592ff Do not log debugging message as a warning (MODSEC-91) 2009-09-29 10:00:51 +00:00
b1v1r
21ecf99dab Merge 2.5.x changes into trunk. 2009-09-24 19:11:16 +00:00
ivanr
aa1e053025 Fix typo 2009-08-28 16:56:44 +00:00
b1v1r
826124b378 Merge 2.5.x changes to trunk. 2009-08-25 22:19:33 +00:00
b1v1r
7379a4fb3f Merge 2.5.x changes into trunk. 2009-08-12 23:03:11 +00:00
b1v1r
6adc53fd46 Merge 2.5.x changes to trunk. 2009-07-27 22:32:07 +00:00
b1v1r
73fb8eae5d Merge latest 2.5.x changes to trunk. 2009-07-24 05:11:45 +00:00
b1v1r
05bd243347 Merge 2.5.x changes into trunk. 2009-06-15 21:14:30 +00:00
b1v1r
e5becf8407 Merge 2.5.x changes to trunk. 2009-05-31 08:45:50 +00:00
b1v1r
12b9bcd33a Merge 2.5.x changes into trunk. 2009-05-21 06:26:26 +00:00
b1v1r
ffc5d968e6 Merge 2.5.x changes into trunk. 2009-05-21 06:18:18 +00:00
b1v1r
944a08822f Merged 2.5.x changes back to trunk. 2009-05-19 06:40:21 +00:00
b1v1r
31ddf4c86c Merge 2.5.x changes into trunk. 2009-05-16 11:19:10 +00:00
b1v1r
a16eb9677c Merge 2.5.x changes into trunk. 2009-05-16 10:42:32 +00:00
b1v1r
9d26b16e23 Merge 2.5.x changes into trunk. 2009-05-16 07:54:17 +00:00
b1v1r
48981bb7c8 Merge in changes from 2.5.x branch. 2009-05-16 04:51:25 +00:00
b1v1r
5fcca65fca Merge 2.5.x build changes back to trunk. 2009-04-22 17:41:33 +00:00
b1v1r
f905bf083f Cleanup the API examples and add more docs. 2009-03-31 17:09:05 +00:00
b1v1r
dc0a2161ac Merge 2.5.9 changes into trunk. 2009-03-12 15:31:10 +00:00
b1v1r
fa96c349e5 Merge 2.5 changes. 2009-03-05 21:50:55 +00:00
b1v1r
a06d8f8ce7 Fixed strict compiler warnings for mlogc. 
Updated mlogc copyright year.
 2009-02-18 18:53:12 +00:00
b1v1r
bef5c53c09 Removed "make -C ..." in favor of a more portable method. 
Added verbose output option to configure.
 2009-02-18 18:01:39 +00:00
(no author)
4a336dadf2 Removed an invalid "Internal error" message forcing auditing of a request (MODSEC-29). 
Cleaned up error messages prior to using send_error_bucket().
 2008-10-21 17:45:18 +00:00
brectanus
c3c822ea01 Revert r1205 as it was fixed in mod_jk upstream. 2008-09-17 16:54:31 +00:00
brectanus
3848ff5b36 Worked around mod_jk issue where a 401 response was not including the WWW-Authentication header (MODSEC-16). 2008-09-15 19:51:06 +00:00
brectanus
67c48bfdfb Added ability to use ctl:requestBodyAccess=off in phase:1 to avoid limit check. 
Added regression tests for this as well.
 2008-09-10 19:45:13 +00:00
brectanus
c5e258f0ba Added additional check for XML well formed. 2008-09-10 18:32:24 +00:00
brectanus
b2c7424a96 Added a comment. 2008-09-10 17:39:18 +00:00
brectanus
309510d70b Change from ctl:requestBodyBuffering to ctl:forceRequestBodyVariable. 2008-09-10 17:11:20 +00:00
ivanr
5740f7a3eb Tidy up. 2008-09-10 14:15:37 +00:00
ivanr
2ee69ce468 Document css_inplace_decode(). 2008-09-10 12:44:41 +00:00
ivanr
2f7ff8f7ab Tidy up. 2008-09-10 11:34:16 +00:00
brectanus
f20059b009 Make sure we fail to validate DTD/schema after a parsing error. Fixes MODSEC-5. 2008-09-03 22:16:42 +00:00
brectanus
f5af5ef429 Remove declaration of an unused variable. 2008-09-03 21:20:06 +00:00
brectanus
34798e9abe Allow ability to force request body buffering to memory. Fixes MODSEC-2. 2008-09-03 20:42:28 +00:00
brectanus
deb6a816b4 Fixed MODSEC-2 by using the msr->hostname (ap_get_server_name(r)) vs r->hostname in the log. 2008-09-02 23:43:15 +00:00
brectanus
20cc395510 Added mlogc source. 2008-09-02 23:10:36 +00:00
ivanr
2818e66a95 Tidy up the code for the performance-measurement mode. Remove the per-phase measurements, which don't seem to work (at least not in my case). 2008-09-01 09:38:30 +00:00
ivanr
acec75be45 Make PERFORMANCE_MEASUREMENT more accurate by removing stray msr_log() invocation. Clean the code a bit. 2008-08-29 16:09:59 +00:00