github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-06 08:25:31 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 65bd06fb7f Adds verifyCPF operator to the unit test list Felipe Zimmerle 2017-06-28 00:46:00 -03:00
  • 74bb022a28 Updates unit test cases Felipe Zimmerle 2017-06-28 00:45:12 -03:00
  • 25175dd800 Adds support to verify CPF operator Felipe Zimmerle 2017-06-28 00:44:42 -03:00
  • 787b388f89 Yet another update on the unit test repository Felipe Zimmerle 2017-06-28 00:11:35 -03:00
  • ddac1fb6f6 Upgrades the unit test repo to the most recent version Felipe Zimmerle 2017-06-27 23:57:49 -03:00
  • a7f7532a2c Adds verify ssn operator to the unit test list Felipe Zimmerle 2017-06-27 23:57:22 -03:00
  • ad8182e2a8 Adds support to the verify ssn operator Felipe Zimmerle 2017-06-27 23:55:47 -03:00
  • d465c2f1a3 Removes the beauty of the JSON logging David Buckle 2017-06-27 08:21:30 -03:00
  • cb6dc9ea27 Updates CHANGES to mention commit: fbd57 Felipe Zimmerle 2017-06-23 16:18:54 -03:00
  • 04e4a6f9b8 Initialize msre_var pointers Allan Boll 2017-06-16 16:56:38 -07:00
  • 1edd3570e1 Adds a set of sanity checks to validate API inputs (2 of 2) Felipe Zimmerle 2017-06-21 19:11:25 -07:00
  • 508a2b5a4a Adds sanity check on SecRemoteRules directive input Felipe Zimmerle 2017-06-21 19:06:58 -07:00
  • 4b70c78fff Adds sanity check on SecRemoteRules directive input v3/twaf8.5 Felipe Zimmerle 2017-06-21 19:06:58 -07:00
  • 3d425997df Adds a set of sanity checks to validate API inputs (1 of 2) Felipe Zimmerle 2017-06-21 12:59:19 -07:00
  • 49b7ea99e6 Adds a set of sanity checks to validate API inputs (1 of 2) Felipe Zimmerle 2017-06-21 12:59:19 -07:00
  • 5a32b389b4 chunks example: Sets the freed variables to NULL Felipe Zimmerle 2017-06-19 19:08:26 -03:00
  • a71b58417a Duplicates the url variable in the disruptive action Felipe Zimmerle 2017-06-19 18:32:17 -03:00
  • 6d77c76b27 Implements intervention support inside using chunks example Felipe Zimmerle 2017-06-19 18:33:51 -03:00
  • f5b47a8077 Duplicates the url variable in the disruptive action Felipe Zimmerle 2017-06-19 18:32:17 -03:00
  • c3a0d8d9bb Fix collections element selection by regex Felipe Zimmerle 2017-06-17 00:08:51 -03:00
  • 3ebc2d61fb Enables random number generation Felipe Zimmerle 2017-06-16 23:19:41 -03:00
  • 4726912ec8 Audit Log: Adds space after response size Felipe Zimmerle 2017-06-16 22:55:15 -03:00
  • 864d54f619 Extends acmp_prepare to pm_from_file Felipe Zimmerle 2017-06-16 16:03:30 -03:00
  • ff73b448de Makes pm mutex optional via configuration flag Felipe Zimmerle 2017-06-16 11:00:21 -03:00
  • 67e481bd2b Adds -lpthread to the reading_logs_via_rule_message example Felipe Zimmerle 2017-06-07 14:22:33 -03:00
  • 2d326c3236 Fix examples/using_bodies_in_chunks compilation Felipe Zimmerle 2017-06-10 20:40:12 -03:00
  • 20134ef242 Fix examples/using_bodies_in_chunks compilation Felipe Zimmerle 2017-06-10 20:40:12 -03:00
  • e1f52a1cf2 Adds using bodies in chunks example Felipe Zimmerle 2017-06-10 09:17:21 -03:00
  • 9cb3f23b50 Adds support to setrsc action Felipe Zimmerle 2017-06-09 10:47:24 -03:00
  • 616a95bfe0 Adds -lpthread to the reading_logs_via_rule_message example Felipe Zimmerle 2017-06-07 14:22:33 -03:00
  • e795253ecf Fix crash on SecRuleRemoveById malformated parameter Felipe Zimmerle 2017-06-06 22:11:09 -03:00
  • 69eb406b8d test-only: Placing a mutex while evaluating the pm operator Felipe Zimmerle 2017-06-03 23:13:51 -03:00
  • 7828220e56 Using multiple threads in reading logs via rule message example Felipe Zimmerle 2017-06-03 16:13:48 -03:00
  • 92b77d25c5 Using pthreads to avoid concurrent access to the collection Felipe Zimmerle 2017-06-03 16:07:35 -03:00
  • 2a5085255e Using multiple threads in reading logs via rule message example Felipe Zimmerle 2017-06-03 16:13:48 -03:00
  • 8fbb9e8128 Using pthreads to avoid concurrent access to the collection Felipe Zimmerle 2017-06-03 16:07:35 -03:00
  • 37868d1534 Add missing feature: t:uppercase transformation Victor Hora 2017-06-02 02:05:08 -04:00
  • 13b32aacdf Updates CHANGES to mention commit: 551314 Felipe Zimmerle 2017-06-01 08:49:34 -03:00
  • 5335587b95 Obtain port from r->connection->local_sockaddr. Andrei Belov 2014-05-15 15:56:44 +04:00
  • 9c0229ce1f Updates libinjection to v3.10.0 Felipe Zimmerle 2017-05-31 21:04:55 -03:00
  • fc83a5d0f0 Enables sanitizing of json request bodies in the apache module for native log format v2/exp/json_sanitizer florian-eichelberger 2017-05-30 22:05:16 -03:00
  • 53571a860d Updates libinjection. Felipe Zimmerle 2017-05-30 10:43:10 -03:00
  • e5dbe59336 Adds info about pull request #1432 Felipe Zimmerle 2017-05-30 08:14:44 -03:00
  • 1684400eee Fixes issue #1432 by not logging normal behavior to error.log and using APLOG_DEBUG instead Victor Hora 2017-05-29 17:05:01 -04:00
  • 9d70345d3d Add missing hexDecode transformation to seclang parser Victor Hora 2017-05-26 19:23:43 -04:00
  • ae216245c5 Removes LMDB from the default configuration options Felipe Zimmerle 2017-05-10 12:50:38 -03:00
  • b4bc52f670 Code cosmetics: init a vector. Felipe Zimmerle 2017-05-28 22:27:10 -03:00
  • accc566730 Removes memory leak on the counter variable modificator Felipe Zimmerle 2017-05-28 22:10:30 -03:00
  • a90b2a3ff7 Code cosmetics: init a vector. Felipe Zimmerle 2017-05-28 22:27:10 -03:00
  • e1d3abc8e7 Removes memory leak on the counter variable modificator Felipe Zimmerle 2017-05-28 22:10:30 -03:00
  • c49688fd7d Verify if a certain resource exists before do any other sanity check Felipe Zimmerle 2017-05-28 21:26:49 -03:00
  • 624bd2bf82 Adds info about pull request #1071 Felipe Zimmerle 2017-05-22 18:59:20 -03:00
  • 6473cf626d Make url path absolute for SecHashEngine only when it is relative in the first place. Fix #752 Hideaki Hayashi 2016-02-05 11:20:28 -08:00
  • 6f49bad748 Fix the hex digit size for SHA1 on msc_crypt implementation Felipe Zimmerle 2017-05-22 18:46:07 -03:00
  • a249574692 Avoids to flush xml buffer while assembling the injected html Felipe Zimmerle 2017-05-22 18:42:37 -03:00
  • 72f632e9b6 Avoid additional operator invokation if last transform of a multimatch doesn't modify the input Daniel Stelter-Gliese 2016-03-02 11:00:40 +01:00
  • 9ac9ff8223 Adds a sanity check before use ctl:ruleRemoveTargetByTag Felipe Zimmerle 2017-05-22 09:21:13 -03:00
  • f1264bec86 Added SecCollectionGCFrequency option for configuring frequncy at which garbage collection runs for persistent collections v2/exp/collection_garbage_freq Robert Bost 2017-05-21 17:42:59 -03:00
  • 112ba45e7a Makes global mutex for collections optional Felipe Zimmerle 2017-05-21 08:53:11 -03:00
  • c6f6dffed2 Move locking before table update Mladen Turk 2016-11-04 10:06:33 +01:00
  • 84d2f30cc8 Use global mutex instead sdbm file lock to fix issues with threaded mpm's Mladen Turk 2016-09-28 18:34:32 +02:00
  • 2de5175b9c Fix collection naming problem Felipe Zimmerle 2017-05-18 23:46:28 -03:00
  • 63462668a9 Refactoring on the doxygen generation Victor Hora 2017-05-10 20:11:04 -05:00
  • a5bbb8345f Fix compilation for 2.2.x and standalone after #1289 Felipe Zimmerle 2017-05-10 17:09:57 -03:00
  • 6143eb99e3 Removes LMDB from the default configuration options Felipe Zimmerle 2017-05-10 12:50:38 -03:00
  • 6ca573f26c Removes local cache for transformations Felipe Zimmerle 2017-05-10 09:29:08 -03:00
  • 37619bae77 Removes local cache for transformations Felipe Zimmerle 2017-05-10 09:29:08 -03:00
  • 4b5a6350af Adds info about pull request #1289 Felipe Zimmerle 2017-05-08 21:21:08 -03:00
  • 4f55b5d1a7 Change from using rand() to thread-safe ap_random_pick. Robert Bost 2016-12-20 17:55:13 -05:00
  • cd4218bd40 Adds info about pull request #1279 Felipe Zimmerle 2017-05-08 21:09:51 -03:00
  • 10fb76ff16 Adding comments around odd looking code to prevent future scrutiny Coty Sutherland 2016-12-02 15:22:48 -05:00
  • d6bd0badc5 Cosmetics: fix #1400 indentation and help message Felipe Zimmerle 2017-05-08 16:01:37 -03:00
  • 70322304f2 {dis|en}able-server-context-logging: Option to disable logging of server info (log producer, sanitized objects, ...) in audit log. Marc Stern 2017-05-08 15:36:58 -03:00
  • da995bb636 Adds sb_handle structure to specific versions of apache Felipe Zimmerle 2017-05-05 07:13:16 -03:00
  • aa1a56f23f Adds information about pull request #1308 Felipe Zimmerle 2017-05-04 23:51:27 -03:00
  • 9b3c32bb54 Makes #1308 compatible to older versions of Apache Felipe Zimmerle 2017-05-04 22:43:38 -03:00
  • 019edfa1a9 This is a fix for #992 to allow drop to work with mod_http2 Barry Pollard 2017-01-21 17:10:54 +00:00
  • b6293988fe Adds ap_log_cerror_ to the standalone implementation Felipe Zimmerle 2017-05-04 13:25:31 -03:00
  • 7bdb79a1a2 Adds information about pull request #1340 Felipe Zimmerle 2017-05-04 10:29:51 -03:00
  • 0f59d4e044 query MPM after all config is loaded (fixes #786) Sander Hoentjen 2017-03-03 09:54:05 +01:00
  • a2eb4c8b04 Don't update the scoreboard ourself (fixes #1337) Sander Hoentjen 2017-03-03 09:52:07 +01:00
  • 53edb258bb get correct worker_score in loop Sander Hoentjen 2017-03-03 09:51:04 +01:00
  • 8efece97f7 don't use sb_handle on apache 2.4 Sander Hoentjen 2017-03-03 09:44:48 +01:00
  • f813365f7e Fix logging for Apache 2.4 Sander Hoentjen 2017-03-03 08:52:38 +01:00
  • caadf97524 Cosmetics: Fix 0x0bdda1 indentation issues Felipe Zimmerle 2017-05-03 09:33:35 -03:00
  • 51f312736a rule id is not logged in case rule has no msg Marc Stern 2017-04-27 17:58:43 +02:00
  • 7f647e85ad Adds missing $log_handler in MODSEC_EXTRA_CFLAGS Marc Stern 2017-05-02 21:45:42 -03:00
  • 3e9e4b39cc Cosmetics changes top of #1402 Felipe Zimmerle 2017-05-02 17:13:46 -03:00
  • 7246998f09 Adds option to disable logging of stopwatches in audit log. Marc Stern 2017-05-02 17:11:11 -03:00
  • 0e05b7bb8a Avoids to load a directory structure as a rules file Felipe Zimmerle 2017-05-02 16:42:22 -03:00
  • c97db2f361 Adds verbose message when a resource is not found. Felipe Zimmerle 2017-05-02 13:38:41 -03:00
  • 41ae8db571 Fix configure help added in #1403 Felipe Zimmerle 2017-05-02 11:11:47 -03:00
  • d7383c39dd Option to disable logging of dechunking Marc Stern 2017-05-02 11:09:10 -03:00
  • a4724dfdab Updates the libinjection Felipe Zimmerle 2017-04-27 18:40:50 -03:00
  • 77a658c7cd Updates libinjection version Felipe Zimmerle 2017-04-27 18:35:01 -03:00
  • 2c07a17fa3 Fix help message on configuration option added by #1381 Felipe Zimmerle 2017-04-26 16:47:42 -03:00
  • 7b86d8c51d Extends a7731c by adding JSON support Marc Stern 2017-04-26 16:38:12 -03:00
  • 3de0dfc5fd Cosmetics: fix #1381 indentation Felipe Zimmerle 2017-04-26 16:04:31 -03:00
  • d1376c5525 Adds option to disable logging of Apache handler in audit log Marc Stern 2017-04-26 16:01:39 -03:00
  • f44852b4e0 Fix the issue number on Marc's CHANGE log entry Felipe Zimmerle 2017-04-26 15:57:48 -03:00