github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 13:56:01 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,224 Commits 55 Branches 109 Tags
Commit Graph

167 Commits

Author SHA1 Message Date
Felipe Zimmerle
7ac515ee29 nginx: Adds proper support to SecServerSignature 
SecServerSignature was leading nginx to crash. It was trying to write over a
memory area that it was not allowed to. In order to fix that a new function was
created on the standalone api. This function is called
modsecIsServerSignatureAvailale. Whenever it returns data it means that the
function SecServerSignature was used by the user. Nginx module was also patched
to support this new function.
 2014-01-08 18:06:32 -08:00
Chase Venters
0ddd2b4639 Add mod_extract_forwarded.c to run before mod_security2.c 
mod_extract_forwarded2.c is already present in this list, but there is a
(seemingly better) alternative for Apache 2.2 which is distributed in
Fedora EPEL that is called mod_extract_forwarded.c.
 2013-12-18 18:05:03 -08:00
Breno Silva
aa18ec7f45 Updated copyright dates 2013-04-19 03:20:46 -04:00
Breno Silva
8816254cc8 ModSecurity: fixed compiling with lua 5.2 2013-01-30 22:03:15 -04:00
chaizhenhua
6815d17690 Added drop action for nginx 2012-12-20 12:32:58 +08:00
brenosilva
afea6dbe61 Fixed drop action was disabled by mistake for apache2 2012-10-19 17:05:08 +00:00
brenosilva
0e85d9f753 MODSEC-226 2012-10-08 15:21:57 +00:00
brenosilva
5c5107a860 MODSEC-297 2012-10-08 13:55:11 +00:00
brenosilva
0d2307192c MODSEC-336 2012-10-05 18:03:58 +00:00
gregwroblewski
2dbe4ab4f0 Second part of IIS/nginx merge into M2 trunk. 2012-08-20 20:31:06 +00:00
brenosilva
e8bd4c05f3 Revert pcre message warning mismatch 2012-08-02 22:58:48 +00:00
brenosilva
f4d446574c Fix pcre version mismatch warning 2012-07-03 19:12:51 +00:00
brenosilva
866cb6d6b4 Update trunk for 2.7 2012-05-10 23:18:39 +00:00
brenosilva
2be4d8b02e Fix new apache api 2011-12-19 15:15:55 +00:00
brenosilva
2046a43bf4 Fixed AP_SERVER_MINOR instead of AP_SERVER_MAJOR 2011-12-19 15:09:38 +00:00
brenosilva
2e00ae0f45 Fixed new apache API 2011-12-19 14:20:39 +00:00
brenosilva
7d327e8df8 Update lastest Apache API 2011-12-19 12:40:56 +00:00
brenosilva
6c71b26985 [Reverted] Check POST request for SecWriteStateLimit 2011-07-07 16:48:30 +00:00
brenosilva
644d0b58ff Check POST request for SecWriteStateLimit 2011-07-07 15:24:09 +00:00
brenosilva
3d69126de0 Build and code fixes 2011-06-14 18:16:55 +00:00
brenosilva
f595919107 Implement unicode map 2011-06-02 19:11:04 +00:00
brenosilva
e1025d0f0c Change apr version macro by apache one 2011-05-18 18:33:20 +00:00
brenosilva
5eaa1a7345 Added SecWriteStateLimit for slow post DoS 2011-05-05 17:01:57 +00:00
brenosilva
1aa4cace65 Fix compiler warnings 2011-04-27 21:54:16 +00:00
brenosilva
6b7edc4d47 Fixes, code cleanups, improvements 2011-04-27 15:58:22 +00:00
brenosilva
f64b5544af Move version() to mod_security2 2011-04-11 18:34:47 +00:00
brenosilva
9c5e0a4f98 Improvements in detection only 2011-04-05 17:41:52 +00:00
brenosilva
b8828ad3f1 Improvements in detection only 2011-04-05 17:22:02 +00:00
brenosilva
13980bd044 Improvements in detection only 2011-04-05 01:53:31 +00:00
brenosilva
ae006f7a81 Improvements in detection only 2011-04-05 01:53:16 +00:00
brenosilva
0f5b0debea Print when request is blocked when it is larger than the configuration 2011-04-04 19:17:29 +00:00
brenosilva
6e3bb889c4 Print when request is blocked when it is larger than the configuration 2011-04-04 19:05:55 +00:00
brenosilva
1e2f836b32 Print when request is blocked when it is larger than the configuration 2011-04-04 18:55:04 +00:00
brenosilva
ed06ed2aec Fix issue in detection only 2011-04-04 16:37:18 +00:00
brenosilva
d696341663 ErrorDocuments and internal redirect hook is available for testing 2011-03-31 13:40:36 +00:00
brenosilva
104f0de46e New License 2011-03-30 14:12:44 +00:00
brenosilva
49732256f6 Improvements, fixes and new features 2011-03-25 13:51:13 +00:00
brenosilva
c04a4edb4b MODSEC-144 2011-03-11 18:48:58 +00:00
brenosilva
74666fe2ca MODSEC-181 2011-03-02 17:41:36 +00:00
brenosilva
7f52d86e4b Include data edition, sanitizematched and few fixes 2011-02-14 12:49:55 +00:00
brenosilva
fdded33831 MODSEC-60 2011-01-12 15:45:46 +00:00
brenosilva
1260d2b097 MODSEC-104 2010-12-23 12:27:57 +00:00
brenosilva
549f059480 move 2.5.13 into trunk 2010-12-08 18:58:18 +00:00
b1v1r
ea34defc0d Added mod_remoteip.c to to postread_beforeme_list (MODSEC-158). 2010-05-12 22:19:04 +00:00
b1v1r
058283fb5a Add the ability to build custom request body parser extensions. 
Add an example for a request body parser extension.
 2010-05-05 23:01:11 +00:00
ivanr
98982e2962 Added the SecDisableBackendCompression directive 2010-03-19 20:00:59 +00:00
b1v1r
08edc0c26f Merge 2.5.x (2.5.12) changes into trunk. 2010-02-05 19:05:20 +00:00
ivanr
b8837bbfb2 Change the format string from m (already taken) to M. 2010-02-02 12:45:28 +00:00
ivanr
9bd9f33594 Run phase 5 prior to mod_log_config. Now for real. 2010-02-01 14:01:33 +00:00
ivanr
a4d5d50be9 Integrate with mod_log_config (MODSEC-108). 2010-02-01 11:01:17 +00:00