github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-03 15:12:56 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 4909713991 Adds CHANGES info for #1562 Felipe Zimmerle 2017-09-27 12:41:40 +00:00
  • 082a0d3aca Adds ios::[open|app] to the parallel.cc to fix write over SELinux David Buckle 2017-09-11 12:44:53 +00:00
  • 48be601ca7 Very first version of our changes file Felipe Zimmerle 2017-09-26 16:33:48 +00:00
  • 1c91e80777 Extends acmp_prepare to pm_from_file Felipe Zimmerle 2017-09-07 22:23:48 -03:00
  • 7d786b3350 Makes pm mutex optional via configuration flag Felipe Zimmerle 2017-09-07 22:23:34 -03:00
  • 119a6fc074 test-only: Placing a mutex while evaluating the pm operator Felipe Zimmerle 2017-09-07 22:23:07 -03:00
  • 29097c9d13 Extends acmp_prepare to pm_from_file v3/twaf8.5-3.0.0-rc1 Felipe Zimmerle 2017-09-07 22:23:48 -03:00
  • a7ed9f2663 Makes pm mutex optional via configuration flag Felipe Zimmerle 2017-09-07 22:23:34 -03:00
  • 48b5ca776d test-only: Placing a mutex while evaluating the pm operator Felipe Zimmerle 2017-09-07 22:23:07 -03:00
  • 09743c981b highlight: Fix JSON structure Felipe Zimmerle 2017-09-07 22:20:15 -03:00
  • 8a21f039be Fix on the m_buf generation: avoid padding before request body Felipe Zimmerle 2017-09-07 22:20:09 -03:00
  • a269ef6e0c Having a copy of m_httpVersion and m_uri instead of a pointer reference Felipe Zimmerle 2017-09-07 22:19:53 -03:00
  • 0e6787c5f8 Adds request_headers_names.conf to reading_logs_via_rule_message example Felipe Zimmerle 2017-09-07 22:19:25 -03:00
  • d61da493eb Having a better error handler for the highlight feature Felipe Zimmerle 2017-03-15 21:35:33 -03:00
  • a70c81b283 Changes the line terminator to fixed value: \n Felipe Zimmerle 2017-03-15 12:07:47 -03:00
  • 04d50db651 Adjusts the line terminator in the RuleMessage::m_buf variable Felipe Zimmerle 2017-03-08 18:02:40 -03:00
  • 98eca23a1b Adds support to m_highlightJSON in RuleMessage class Felipe Zimmerle 2017-09-07 22:04:00 -03:00
  • 2419a36593 First version of the inline highlight calculation Felipe Zimmerle 2017-02-26 23:32:48 -03:00
  • a2427df27f fix: ignore .git directory while generating the release file v3.0.0-rc1 Felipe Zimmerle 2017-08-27 23:39:43 -03:00
  • 04f7009980 Adds a simple release script Felipe Zimmerle 2017-08-23 23:33:07 -03:00
  • cca3642530 Changes release tag to -rc1 Felipe Zimmerle 2017-08-23 23:04:06 -03:00
  • 224f6ef260 Fix configuration schema on the configure summary Felipe Zimmerle 2017-08-23 23:03:11 -03:00
  • 7ac6bf7241 Fix memory issues while resolving variables Felipe Zimmerle 2017-08-27 19:00:30 -03:00
  • 003a8e8e5f Uses shared_ptr on variable names Felipe Zimmerle 2017-08-24 18:18:55 -03:00
  • 9d062f53a7 Merge pull request #1543 from defanator/remove-SecRequestBodyInMemoryLimit-from-conf Victor Hora 2017-08-24 13:52:21 -04:00
  • 5c737c2c06 Treat _NAMES variables as collections (#5) Mirko Dziadzka 2017-08-16 18:29:12 +02:00
  • 9069a453e5 Revert "Treating ARGS_NAMES as an array instead of scalar" Felipe Zimmerle 2017-08-23 23:55:02 -03:00
  • 43e3ff91e8 Fixes a bug with an unitialized variable. Mirko Dziadzka 2017-08-09 09:14:45 +00:00
  • 3a048ee2db Support --enable-debug-logs=no option of configure script (#2) michaelgranzow-avi 2017-08-03 19:50:43 +02:00
  • f6af42c235 Remove SecRequestBodyInMemoryLimit from configuration template Andrei Belov 2017-08-23 11:42:23 +03:00
  • 1d3c4c670d Treating ARGS_NAMES as an array instead of scalar Felipe Zimmerle 2017-08-22 18:26:56 -03:00
  • 81879cd131 parser: SecRequestBodyInMemoryLimit is now returning an error msg Felipe Zimmerle 2017-08-22 10:42:47 -03:00
  • 2cf636cf76 parser: Adds generated parser files after 0xfce65 Felipe Zimmerle 2017-08-21 23:41:37 -03:00
  • 0be821ded7 change parsing of SetVar actions asterite 2017-08-17 16:44:01 +03:00
  • e0ebf28540 Adds `$' as a valid character in ruleRemoveTargetById Felipe Zimmerle 2017-08-21 22:59:12 -03:00
  • 4b9bd499eb Fix to_hex_if_need function on string utils Felipe Zimmerle 2017-08-21 22:39:26 -03:00
  • 8d6209f652 gitignore: Adds binaries from examples to the ignore list Felipe Zimmerle 2017-08-20 20:10:56 -03:00
  • 5e76d85636 Update test cases to include test propesed at #1523 Felipe Zimmerle 2017-08-20 20:08:17 -03:00
  • 31f1d04464 add validateByteRange regression test to list in Makefile asterite 2017-08-19 11:32:29 +03:00
  • 58872e7eda adds a test for validateByteRange with bytes > 127 asterite 2017-08-02 20:56:00 +03:00
  • 86e74fac58 validateByteRange: correctly handle bytes > 127 asterite 2017-08-02 20:50:27 +03:00
  • 7665d96a13 Improve action-allow test titles Lasse Karstensen 2017-08-03 13:29:52 +02:00
  • fc06915cc6 Extend RESPONSE_BODY test case. Lasse Karstensen 2017-08-03 13:28:16 +02:00
  • 31655e2c9b Updates secrules-language-tests Felipe Zimmerle 2017-08-20 19:55:08 -03:00
  • 0a3dd824fe Updates libinjection to v3.10.0 Felipe Zimmerle 2017-08-20 19:52:00 -03:00
  • b8789ab9f4 add a test for negated implicit @rx operator asterite 2017-08-03 10:27:12 +03:00
  • 039bd2cc84 fix negated implicit @rx operator asterite 2017-08-03 10:25:33 +03:00
  • ca9cbf4ddc Fix for @rbl operator to correctly recognize known supported RBL providers Victor Hora 2017-08-02 23:56:29 -04:00
  • 9d4ed52518 test: Counts the disabled tests as skiped on the test summary Felipe Zimmerle 2017-08-20 19:33:53 -03:00
  • d66f0c7e0d Add support for disabled test cases. Lasse Karstensen 2017-08-01 12:08:27 +02:00
  • ab14b7c083 Add support for disabling test cases. Lasse Karstensen 2017-07-27 13:20:40 +02:00
  • c22658ec80 Adds `msc_update_status_code' method to the libmodsec api Felipe Zimmerle 2017-08-20 18:30:17 -03:00
  • fff5a57656 Changes auditlog type to serial by default Felipe Zimmerle 2017-08-20 17:32:44 -03:00
  • bf281eb4df Relaxing the audit log sanity checks to allow empty relevant status Felipe Zimmerle 2017-08-20 15:52:07 -03:00
  • 09ee471498 Handle zero byte rule files correctly. Lasse Karstensen 2017-08-03 14:31:54 +02:00
  • 945ee27a85 parser: Adds SecRuleUpdateActionById is not yet supported Felipe Zimmerle 2017-08-17 15:08:38 -03:00
  • d7eab6b7a3 Adds support to SecRuleRemoveByMsg Felipe Zimmerle 2017-08-16 23:42:13 -03:00
  • 562c2b2f5a parser: Adds support to tag action without quotes Felipe Zimmerle 2017-08-16 22:29:42 -03:00
  • b4051246b1 Adds support to SecResponseBodyMimeTypesClear Felipe Zimmerle 2017-08-16 20:52:05 -03:00
  • 48f1470269 Adds support to SecArgumentSeparator Felipe Zimmerle 2017-08-16 18:27:51 -03:00
  • a302538521 parser: Adds SecWebAppId not supported note Felipe Zimmerle 2017-08-16 17:31:59 -03:00
  • 2c4e65f7ee parser: Adds support to quoted paramenter in SecDataDir Felipe Zimmerle 2017-08-16 17:17:39 -03:00
  • bb2fe0e039 parser: Adds note saying that SecServerSignature is not supported Felipe Zimmerle 2017-08-16 17:14:42 -03:00
  • e6cfd5379d parser: Adds SecRuleScript not implemented note Felipe Zimmerle 2017-08-16 17:00:36 -03:00
  • cd533e00e7 parser: Adds support to quoted arguments on SecUploadDir Felipe Zimmerle 2017-08-16 10:17:51 -03:00
  • b5d0dc2409 paser: Adds support for quoted argument on SecTmpDir Felipe Zimmerle 2017-08-16 09:51:56 -03:00
  • 5ffc5c1633 parser: Adds support to quoted arguments in asorted configurations Felipe Zimmerle 2017-08-16 09:37:34 -03:00
  • 9abc37157d parser: Adds msg: ContentInjection is not yet supported Felipe Zimmerle 2017-08-16 09:20:58 -03:00
  • 06447ea3d4 parser: Adds support to double quotes on adit logs file Felipe Zimmerle 2017-08-16 00:05:00 -03:00
  • c525cbfb20 parser: Adds ability to inform auditlog status without quotes Felipe Zimmerle 2017-08-15 15:26:14 -03:00
  • 9ee412735d parser: Improves the reading for the url in the redirect action Felipe Zimmerle 2017-08-15 14:46:18 -03:00
  • 8c66a1b4c2 Adds support to double quotes on debug logs conf Felipe Zimmerle 2017-08-15 14:20:39 -03:00
  • 0508395f8d Forces REQBODY_ERROR to zero whenever there is a valid XML Felipe Zimmerle 2017-07-31 14:12:18 -03:00
  • b36c4260c1 Adds a graceful error if there is no memory for request body inspection Felipe Zimmerle 2017-07-31 10:41:20 -03:00
  • 9a41942ce1 Optimization on the macro expansion function Felipe Zimmerle 2017-07-07 23:51:20 -03:00
  • 53ff0e1a57 Adds initial support to SecHttpBlKey Victor Hora 2017-07-29 00:12:14 -03:00
  • 515e073503 Rename FromNowOneAllowType to FromNowOnAllowType. Lasse Karstensen 2017-07-13 12:11:12 +02:00
  • bce5ef7704 Add the missing g in Transaction::GetReponseBodyLenth() Lasse Karstensen 2017-07-28 10:57:59 +02:00
  • 56baef5f1f Fix test case as consequence of the changes at #1514 Felipe Zimmerle 2017-07-28 22:24:21 -03:00
  • 5e06a67fbe Demote log lines to improve debug log SNR. Lasse Karstensen 2017-07-27 14:08:49 +02:00
  • 5c7892ce89 Reduce use of underscores in log output. Lasse Karstensen 2017-07-27 13:59:22 +02:00
  • e3b9e6061f Ignore droppings from make check. Lasse Karstensen 2017-07-13 12:09:49 +02:00
  • 4d1739a2c3 Ignore built files. Lasse Karstensen 2017-07-13 11:49:16 +02:00
  • 0242646610 Adds test case for the ctl:ruleEngine action Felipe Zimmerle 2017-07-27 22:09:59 -03:00
  • 4bec6b0019 Adds support to ctl:ruleEngine Felipe Zimmerle 2017-07-27 21:48:56 -03:00
  • 1f1e8324b1 Includes HTTP version and response code on auditlogs/F Felipe Zimmerle 2017-07-25 23:23:54 -03:00
  • 43cb8ed652 Adds support to C section on auditlogs Felipe Zimmerle 2017-07-25 23:13:23 -03:00
  • 15ca5ceab4 Yet another change on the audit log permissions Felipe Zimmerle 2017-07-25 23:07:10 -03:00
  • b58c8fe7ed Changes the default file creation permission to 1600 Felipe Zimmerle 2017-07-25 15:11:27 -03:00
  • 27a8abc052 Changes the auditlog new derectories permission to 1872 Felipe Zimmerle 2017-07-25 15:06:47 -03:00
  • 337216fd87 fix: remove target by {id,tag} are now considering collections Felipe Zimmerle 2017-07-25 09:19:21 -03:00
  • 7c2dbf48cf Typo in the debuglogs for rules::getFinalVars Felipe Zimmerle 2017-07-24 22:18:00 -03:00
  • b878ece6c6 Version 2.9.2 v2.9.2 Felipe Zimmerle 2017-06-27 10:01:49 -03:00
  • 1e8b4669eb Refactoring of IIS build scripts Victor Hora 2017-07-17 08:43:20 -03:00
  • 61bce8d9a9 Cosmetics: moving declaration to the too of the block Felipe Zimmerle 2017-07-14 13:22:46 -03:00
  • 9f92321afb Fix test case to match new version of curl. Felipe Zimmerle 2017-07-14 10:37:58 -03:00
  • e14dc602e5 Adds support to SecRuleUpdateTargetById Felipe Zimmerle 2017-07-04 11:47:39 -07:00
  • 9ce7d022c2 Fix memory leak in the regression utility Felipe Zimmerle 2017-07-04 11:01:11 -07:00
  • 52c5631ae7 Adds test case to UpdateTargetByTag Felipe Zimmerle 2017-07-04 11:00:11 -07:00
  • fba9c20ea1 Adds initial support to SecRuleUpdateTargetByTag Felipe Zimmerle 2017-07-03 17:07:02 -03:00