github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-06 08:25:31 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 1a5ff4e371 Fix help message on configuration option added by #1380 Felipe Zimmerle 2017-04-26 15:18:24 -03:00
  • 67908f45f4 Cosmetics: fix #1380 indentation Felipe Zimmerle 2017-04-26 14:09:48 -03:00
  • d243818aff {dis|en}able-collection-delete-problem-logging: Option to disable logging of collection delete problem in audit log when log level < 9 in audit log [Issue #576 - Marc Stern] Marc Stern 2017-04-26 14:04:45 -03:00
  • 6421ff087a Forces disruptive to be first-rule-only Felipe Zimmerle 2017-04-24 21:02:50 -03:00
  • 7e59250068 Fix JSON parsing error message Michael Simpson 2017-04-20 13:38:49 +10:00
  • 53a8bb2e18 Adds information about pull request #1379 Felipe Zimmerle 2017-04-11 11:12:14 -03:00
  • 45b7706f1f Adds sanity check before print action message in the logs Felipe Zimmerle 2017-04-11 10:01:30 -03:00
  • 99eb07d944 Fix missing rule id in log See https://github.com/SpiderLabs/ModSecurity/issues/391 Marc Stern 2017-04-10 12:01:17 +02:00
  • 9244cd9824 Option to disable logging of "Server" in audit log when log level < 9. [Issue #1070 - Marc Stern] Marc Stern 2017-04-10 15:03:09 +02:00
  • c1c91e24cd {dis|en}able-filename-logging: Option to disable logging of filename in audit log [Issue #1065 - Marc Stern] Marc Stern 2016-12-09 10:27:24 +01:00
  • 42c819d1b9 Adds information about pull request #1339 Felipe Zimmerle 2017-04-06 13:21:32 -03:00
  • 96a1f55e16 Read fuzzy hash databases on init Robert Paprocki 2017-03-02 13:52:45 -08:00
  • fd49ca7138 Don't leak an fd on fuzzy hash initialization Robert Paprocki 2017-02-22 13:54:49 -08:00
  • b58f713fe9 add support for soap+xml Chaim Sanders 2017-04-03 19:52:14 -04:00
  • 6cce8a2764 Adds information about pull request #1374 Felipe Zimmerle 2017-04-06 09:37:52 -03:00
  • 5e4e2af7a6 add support for soap+xml Chaim Sanders 2017-04-03 19:52:14 -04:00
  • e2bbe9858f XML Parser: removes unnecessary message from debug logs Felipe Zimmerle 2017-04-05 09:38:46 -03:00
  • eb798d8c55 Adds information about pull request #1373 Felipe Zimmerle 2017-04-03 16:23:33 -03:00
  • 1bb2ffcd6b Fix building with nginx >= 1.11.11 Andrei Belov 2017-04-03 12:52:01 +03:00
  • ba070c9eaa Speeds up utils::string::toupper function Felipe Zimmerle 2017-03-31 14:35:26 -03:00
  • b3c8e97ff7 Parse fix: accepting variables in between quotes Felipe Zimmerle 2017-03-29 19:56:19 -03:00
  • c7053e572f Postponing the decision to whenever save or not a log message to the last rule Felipe Zimmerle 2017-03-29 14:51:32 -03:00
  • 4d03ef512e Fix TX dictionary element name on logs Felipe Zimmerle 2017-03-29 14:49:57 -03:00
  • 5f60bb5224 Yet another fix on the debuglogs merge Felipe Zimmerle 2017-03-28 18:11:31 -03:00
  • cf4deaa3a0 Using uint64_t instead of u_int64_t Felipe Zimmerle 2017-03-28 12:55:40 -03:00
  • d15b57895b Fix the Multipart parser error for unknown content type Felipe Zimmerle 2017-03-28 09:38:10 -03:00
  • 80cfca6fa3 Fix the debug log level merge function Felipe Zimmerle 2017-03-27 14:09:42 -03:00
  • 2a54bf23e5 Fix the debug log merge function Felipe Zimmerle 2017-03-27 11:24:26 -03:00
  • eb12b15146 Flush [shared-] file after write it Felipe Zimmerle 2017-03-24 18:08:13 -03:00
  • dbcf5a7198 API CHANGE: Rules::merge signature was change to includes error msg Felipe Zimmerle 2017-03-23 09:52:39 -03:00
  • 5e59d19121 Improves macro expansion speed and variable set attribution Felipe Zimmerle 2017-03-08 17:49:12 -03:00
  • f17da09fc0 Avoids call `toupper' twice while resolving a variable Felipe Zimmerle 2017-03-08 14:26:02 -03:00
  • a1a70c7f2f highlight: Fix JSON structure Felipe Zimmerle 2017-03-20 22:54:55 -03:00
  • 2e068428ea Fix on the m_buf generation: avoid padding before request body Felipe Zimmerle 2017-03-16 11:22:02 -03:00
  • 1f70e3f7e4 Having a copy of m_httpVersion and m_uri instead of a pointer reference Felipe Zimmerle 2017-03-16 09:46:21 -03:00
  • 5b52190f97 Adds request_headers_names.conf to reading_logs_via_rule_message example Felipe Zimmerle 2017-03-15 21:45:14 -03:00
  • 907397b7f2 Having a better error handler for the highlight feature Felipe Zimmerle 2017-03-15 21:35:33 -03:00
  • ee8e0f90ef Changes the line terminator to fixed value: \n Felipe Zimmerle 2017-03-15 12:07:47 -03:00
  • 85f98c8a66 Fix "make dist" after recent changes to parser Andrei Belov 2017-03-07 16:17:49 +03:00
  • ef35ffa13e Adjusts the line terminator in the RuleMessage::m_buf variable Felipe Zimmerle 2017-03-08 18:02:40 -03:00
  • 5537951993 Adds support to m_highlightJSON in RuleMessage class Felipe Zimmerle 2017-03-08 13:26:53 -03:00
  • c290c73f9b Updates travis' badge Felipe Zimmerle 2017-03-08 09:44:17 -03:00
  • 0ae459593e First version of the inline highlight calculation Felipe Zimmerle 2017-02-26 23:32:48 -03:00
  • 53485c7f74 Fix pcre_exec offset values Felipe Zimmerle 2017-02-26 16:00:03 -03:00
  • e79712095b Minor fix in the decision on whenever the log callback should be called Felipe Zimmerle 2017-02-26 02:07:14 -03:00
  • e2af60e765 Expands log_cb to share ruleMessage structure instead text Felipe Zimmerle 2017-02-26 01:34:52 -03:00
  • 9ea5b475b2 Fix missing initialization on rules-check utility Felipe Zimmerle 2017-02-25 14:33:32 -03:00
  • 6d61bd6b57 Adds rules-check utility Felipe Zimmerle 2017-02-25 01:11:58 -03:00
  • d2c5b31b17 Uses FILE instead of _IO_FILE Felipe Zimmerle 2017-02-24 23:18:10 -03:00
  • e2bd87d07d Fix minor parser errors Felipe Zimmerle 2017-02-24 23:09:58 -03:00
  • c3cb23f47d Removes the ';' from the x-www-form-urlencoded body-processor comparison Felipe Zimmerle 2017-02-24 11:17:41 -03:00
  • d6363607aa Accept quoted regexp in the collection selection Felipe Zimmerle 2017-02-24 00:16:24 -03:00
  • 39761ce7b8 Discards the `charset' from the C-T while checking for body processors Felipe Zimmerle 2017-02-23 23:00:01 -03:00
  • 7ab192e90f Using method instead of procol in the audit logs. Felipe Zimmerle 2017-02-23 22:50:45 -03:00
  • fcad290152 Having the DebugLogs using the SharedFile schema Felipe Zimmerle 2017-02-23 22:24:07 -03:00
  • 7f9cd76619 Improvements on the SharedFiles class Felipe Zimmerle 2017-02-23 22:11:30 -03:00
  • 01c13da510 Fix segfault due to invalid memory access on SharedFiles class Felipe Zimmerle 2017-02-17 17:47:53 -03:00
  • 87f6b478fb Fix typo in returned string David Testé 2017-02-15 10:34:42 +01:00
  • cc25390dc9 Fix copy/paste typo David Testé 2017-02-15 10:32:41 +01:00
  • 027d50b76b Adds first version of `processContentOffset' Felipe Zimmerle 2017-02-15 18:18:10 -03:00
  • 7aae5dc183 Fix Regex::searchAll to behave like global modifier Felipe Zimmerle 2017-02-15 16:04:59 -03:00
  • 4d66481bfa travis: Installs cppcheck on MacOS X Felipe Zimmerle 2017-02-15 12:37:06 -03:00
  • 616cf84c31 Adds check-static to travis.yaml Felipe Zimmerle 2017-02-15 09:40:14 -03:00
  • 4ad3574cf2 Adds offset regression tests and assorted fixes on var's offsets Felipe Zimmerle 2017-02-14 15:46:52 -03:00
  • 795994bb0e Adds support to error_log in the regression tests Felipe Zimmerle 2017-02-07 15:49:04 -03:00
  • ae8c2a4865 Adds ZenHub Badge to Readme Felipe Zimmerle 2017-02-07 13:35:41 -03:00
  • 073b0f6d6a Small changes in the README, including: having ModSecurity logo Felipe Zimmerle 2017-02-07 11:00:50 -03:00
  • aba68a7b6a Adds ModSec log to the git repository Felipe Zimmerle 2017-02-07 10:56:42 -03:00
  • efb90bb554 Adds OWASP rules to the gitignore list Felipe Zimmerle 2017-02-07 10:21:50 -03:00
  • 71a9677f38 Adds configure.h to system.cc in oder to read the MACOSX def Felipe Zimmerle 2017-02-06 17:55:15 -03:00
  • 09cfa2869f Removes dup on travis build matrix Felipe Zimmerle 2017-02-06 11:01:34 -03:00
  • 44121bdee3 Updates secrules-language-tests Felipe Zimmerle 2017-02-03 21:48:55 -03:00
  • 158ec7b2e1 Adds support to resources on the unit tests Felipe Zimmerle 2017-02-03 21:47:03 -03:00
  • b021c15e4b Adds a little more build options to the travis file Felipe Zimmerle 2017-02-03 17:29:46 -03:00
  • c06daba398 Adds support for curl resource on the regression tests Felipe Zimmerle 2017-02-03 17:12:48 -03:00
  • f9552ede2b Adds missing file Felipe Zimmerle 2017-02-03 16:48:02 -03:00
  • 36ab4b952f Fix lmdb compilation issue Felipe Zimmerle 2017-02-03 16:29:38 -03:00
  • 6f47462110 Fix compilation when YAJL is not present Felipe Zimmerle 2017-02-03 13:57:16 -03:00
  • 9d33990550 Very first travis file Felipe Zimmerle 2017-02-02 22:12:47 -03:00
  • d851699529 Adds references to the collection variables Felipe Zimmerle 2017-02-02 18:32:00 -03:00
  • e95efa05cc Fix assorted memory and static analysis errors Felipe Zimmerle 2017-01-31 17:15:31 -03:00
  • 8d0583eda4 Increments the cppcheck suppression list Felipe Zimmerle 2017-01-31 17:15:00 -03:00
  • f40a6edec8 Adds valgrind suppression list Felipe Zimmerle 2017-01-31 17:14:33 -03:00
  • f2d149fc5f Extends the direct access model to other collections Felipe Zimmerle 2017-01-26 23:13:38 -03:00
  • ca24b6bb06 PoC: Adds support to direct access on ARGS collection Felipe Zimmerle 2017-01-24 10:00:16 -03:00
  • 17e5a63577 Removes memory leak on the "offset" feature Felipe Zimmerle 2017-01-22 23:41:54 -03:00
  • c1f11ab4e5 Cosmetics: assorted fixes on the coding style Felipe Zimmerle 2017-01-20 17:33:33 -03:00
  • a88dc8efa9 Changes the check script to detect segfaults Felipe Zimmerle 2017-01-19 21:41:47 -03:00
  • ff65d618e4 Adds missing Makefile.am file Felipe Zimmerle 2017-01-19 15:20:00 -03:00
  • ecbf292f6d Adds first PoC for the operator offset feature Felipe Zimmerle 2017-01-19 14:34:48 -03:00
  • 9a8fc3116a Instantiates the Class variable earlier Felipe Zimmerle 2017-01-18 09:13:34 -03:00
  • ba6b972ca8 Makes global collection allowed to be set by setVar Felipe Zimmerle 2017-01-17 15:06:11 -03:00
  • b516cc6de1 Adds operation unset to setVar action Felipe Zimmerle 2017-01-17 15:04:41 -03:00
  • e95555132e Contionuation of 1 time variable patch Felipe Zimmerle 2017-01-17 10:30:50 -03:00
  • 703da3c4f0 Adds PoC about 1-time variable resolution and draft for offset Felipe Zimmerle 2017-01-12 15:27:42 -03:00
  • 6abbb7e91e Fix regular expression test case and updates the test list Felipe Zimmerle 2017-01-11 22:16:37 -03:00
  • 1e8b374117 Removes the depency on bison/flex if it is not a parser build Felipe Zimmerle 2017-01-11 22:09:12 -03:00
  • 3eccfaf1f6 Disables parser generation on all builds Felipe Zimmerle 2017-01-11 16:24:11 -03:00
  • 03d0570e99 Deletes the Rule object in case of a parser failure Felipe Zimmerle 2017-01-11 02:15:11 -03:00
  • 1aa2a9c01b Avoids memory leak by cleaning loc stack on Driver's destructor Felipe Zimmerle 2017-01-11 02:14:07 -03:00