ModSecurity

mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 13:56:01 +03:00

Author	SHA1	Message	Date
Felipe Zimmerle	2e9a35c358	Refactoring on the audit logs implementation Among of other things, it is now supporting shared file locks between different process.	2016-12-14 23:17:28 -03:00
Felipe Zimmerle	9707d46e45	Adds `debug_log' headers in the no install list	2016-12-09 15:03:00 -03:00
Felipe Zimmerle	64e2927922	Moves debuglog stuff inside the debug_log namespace	2016-12-09 09:52:01 -03:00
Felipe Zimmerle	31d5d79089	Removes charset=UTF-8 from content-type variable	2016-12-07 15:59:20 -03:00
Andrei Belov	8f16650595	Fix install and dist targets after 768cc74f, 9733cacd, bfc30dad	2016-12-07 10:31:34 -03:00
David Testé	89987806cd	Add (void) argument to be ANSI C compliant Add void argument has to avoid warning messages when compiling python bindings with CFFI since it uses -Wstrict-prototypes option by default. Modify`msc_create_rules_set` and `msc_init` internals, now it returns directly an instance like `msc_new_transaction` in transaction.cc.	2016-12-01 15:32:29 -03:00
Felipe Zimmerle	cce6179dcc	Refactoring: new structure for logging alerts Disruptive actions were moved to actions::disruptive namespace	2016-12-01 14:14:54 -03:00
Felipe Zimmerle	bfc30dad34	Refactoring: how to report to error logs	2016-12-01 01:05:29 -03:00
Felipe Zimmerle	e6b58014db	Cosmetics: Fix some static analysis report	2016-11-29 14:31:15 -03:00
Felipe Zimmerle	9bd37ccb63	Refactoring: Rule class	2016-11-28 13:07:25 -03:00
Felipe Zimmerle	a776cce6d7	Changes RULE variable group to be save at transient collection	2016-11-28 13:00:04 -03:00
Felipe Zimmerle	2930d40d57	Changes the actions to affect the ruleMessage instead of transaction	2016-11-28 12:32:31 -03:00
Felipe Zimmerle	8fa0523fe0	Adds initial support to the multiMatch action	2016-11-28 12:20:18 -03:00
Felipe Zimmerle	9116a19bcc	Using the decoded uri in REQUEST_URI instead of the encoded one	2016-11-28 12:20:11 -03:00
Felipe Zimmerle	7a36499f22	Makes @pm compatible with the brand new capture schema	2016-11-28 12:13:33 -03:00
Felipe Zimmerle	eecb90cfd0	setvar: needs review	2016-11-28 12:12:04 -03:00
Felipe Zimmerle	c339194c02	Changes operator rx to use regexp::searchAll	2016-11-22 15:42:35 -03:00
Felipe Zimmerle	9c7988d88f	Adds support to regexp::searchAll	2016-11-22 15:37:12 -03:00
Felipe Zimmerle	d3a4ec760c	Removes slash from REQUEST_BASENAME	2016-11-22 15:33:32 -03:00
Felipe Zimmerle	293a849668	Adds m_uri_no_query_string_decoded to transaction	2016-11-22 15:23:47 -03:00
Felipe Zimmerle	ab88083159	parser: Fix the expanded list inclusion	2016-11-16 15:47:21 -03:00
Felipe Zimmerle	c98be42f8f	Limits the transformation output to 80 chars in the debug logs	2016-11-16 15:37:52 -03:00
David Testé	f5898e94c7	Fix documentation typos	2016-11-14 10:23:51 -03:00
David Testé	85edff522d	Fix return value of msc_rules_merge() Regarding to the documentation msc_rules_merge() should return the number of merged rules instead of 0 in all cases.	2016-11-14 10:23:51 -03:00
Felipe Zimmerle	4643501507	parser: Improves the include error when the file does not exist	2016-11-14 10:23:00 -03:00
Felipe Zimmerle	8b4f1bc46c	Fix rule file inclusion path The inclusion was not taking `*' into consideration, leading the relative configuration inclusion to fail. That was very annoying.	2016-11-11 15:15:51 -03:00
Felipe Zimmerle	3ab5c8057d	Updates the fuzzer sub-project	2016-11-11 13:05:40 -03:00
dkamen	936ec0b479	~Rule will delete chainedRule Came across this memory leak when reloading nginx with hundreds of rule chains	2016-11-10 01:00:44 -03:00
Andrei Belov	1b28776814	Fixed install and dist targets after 3ee7b24	2016-11-09 09:38:47 -03:00
Felipe Zimmerle	3ee7b24928	Adds refCounter to actions	2016-11-08 18:14:34 -03:00
Felipe Zimmerle	ad05c74c3f	Moves mbedtls to others and renames msc_string.h to string.h	2016-11-07 09:52:08 -03:00
Felipe Zimmerle	2244e874e2	Moves static methods from class String to the namespace string	2016-11-04 16:00:44 -03:00
Felipe Zimmerle	62a0cb468b	Renames utils/msc_string.[h\|cc] to utils/string.[h\|cc]	2016-11-04 16:00:42 -03:00
Felipe Zimmerle	424418f54b	Renames msc_system.[h\|cc] to system.[h\|cc]	2016-11-04 16:00:36 -03:00
Felipe Zimmerle	4ced1d18e0	Using full path in the header inclusion	2016-11-04 14:45:01 -03:00
Felipe Zimmerle	768cc74f0e	Moves RuleMessage to its own file	2016-11-04 11:58:57 -03:00
Felipe Zimmerle	ac4cb53d09	parser: Better understands escaped quotes in operator parameters	2016-11-04 01:55:47 -03:00
Felipe Zimmerle	1bf53c0576	Deletes ruleMessage by the end of the rule execution	2016-11-04 01:08:41 -03:00
Felipe Zimmerle	5fa02f17ce	Fix Utils::hexdigest	2016-11-03 22:59:57 -03:00
Felipe Zimmerle	507ec44cc2	Refactoring on `utils.cc' and adjacents Completely removed the `utils.cc' by moving residual functions into sub-classes of `utils/'	2016-11-03 20:26:27 -03:00
Felipe Zimmerle	b48dccff70	Removes unused `urldecode_uni_nonstrict_inplace_ex'	2016-11-03 11:01:14 -03:00
Felipe Zimmerle	78d6d20982	Moves `phase' related functions from` utils' to `utils/phase'	2016-11-03 10:48:27 -03:00
Felipe Zimmerle	f1e742c159	Moves system related functions from `utils' to` utils/system'	2016-11-03 10:48:10 -03:00
Felipe Zimmerle	73c4d69174	Moves string related functions from `utils' to` utils/string'	2016-11-03 10:47:22 -03:00
Felipe Zimmerle	9733cacd4d	Refactoring: moves ctl_ actions into ctl namespace	2016-11-01 14:58:51 -03:00
Felipe Zimmerle	2bb9d7988f	Cosmetics: huge refactoring in the parser The parser is now more elegant and resilient.	2016-10-31 17:33:24 -03:00
Felipe Zimmerle	721983a05a	Adds missing ctl_request_body.*	2016-10-31 13:16:34 -03:00
Felipe Zimmerle	75a5000b16	Cosmetics: coding style	2016-10-28 09:57:59 -03:00
Felipe Zimmerle	4711644600	dds support to CtlRequestBodyAccess	2016-10-28 09:48:10 -03:00
Felipe Zimmerle	10d263cd36	parser: Relax the characters accepted by ctl:ruleRemoveByX	2016-10-26 16:21:07 -03:00

1 2 3 4 5 ...

604 Commits