mirror of
https://github.com/owasp-modsecurity/ModSecurity.git
synced 2025-08-14 13:56:01 +03:00
The server ID is a sha-1 identifier generated from the mac address of the first ethernet device plus the server name. The process is the same used by ModSecurity 2.9
65 lines
2.1 KiB
JSON
65 lines
2.1 KiB
JSON
[
|
|
{
|
|
"enabled": 1,
|
|
"version_min": 300000,
|
|
"version_max": 0,
|
|
"title": "Debug log",
|
|
"client": {
|
|
"ip": "200.249.12.31",
|
|
"port": 2313
|
|
},
|
|
"server": {
|
|
"ip": "200.249.12.31",
|
|
"port": 80
|
|
},
|
|
"request": {
|
|
"headers": {
|
|
"Host": "net.tutsplus.com",
|
|
"User-Agent": "Mozilla\/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko\/20091102 Firefox\/3.5.5 (.NET CLR 3.5.30729)",
|
|
"Accept": "text\/html,application\/xhtml+xml,application\/xml;q=0.9,*\/*;q=0.8",
|
|
"Accept-Language": "en-us,en;q=0.5",
|
|
"Accept-Encoding": "gzip,deflate",
|
|
"Accept-Charset": "ISO-8859-1,utf-8;q=0.7,*;q=0.7",
|
|
"Keep-Alive": "300",
|
|
"Connection": "keep-alive",
|
|
"Cookie": "PHPSESSID=r2t5uvjq435r4q7ib3vtdjq120",
|
|
"Pragma": "no-cache",
|
|
"Cache-Control": "no-cache"
|
|
},
|
|
"uri": "GET \/test.pl?param1=test¶2=test2",
|
|
"body": ""
|
|
},
|
|
"response": {
|
|
"headers": {
|
|
"Content-Type": "text\/xml; charset=utf-8\n\r",
|
|
"Content-Length": "length\n\r"
|
|
},
|
|
"body": [
|
|
"<?xml version=\"1.0\" encoding=\"utf-8\"?>\n\r",
|
|
"<soap:Envelope xmlns:xsi=\"http:\/\/www.w3.org\/2001\/XMLSchema-instance\" xmlns:xsd=\"http:\/\/www.w3.org\/2001\/XMLSchema\" xmlns:soap=\"http:\/\/schemas.xmlsoap.org\/soap\/envelope\/\">\n\r",
|
|
" <soap:Body>\n\r",
|
|
" <EnlightenResponse xmlns=\"http:\/\/clearforest.com\/\">\n\r",
|
|
" <EnlightenResult>string<\/EnlightenResult>\n\r",
|
|
" <\/EnlightenResponse>\n\r",
|
|
" <\/soap:Body>\n\r",
|
|
"<\/soap:Envelope>\n\r"
|
|
]
|
|
},
|
|
"expected": {
|
|
"audit_log": "",
|
|
"debug_log": ".*",
|
|
"error_log": ""
|
|
},
|
|
"rules": [
|
|
"SecRuleEngine On",
|
|
"SecDebugLog \/tmp\/modsec_debug.log",
|
|
"SecDebugLogLevel 9",
|
|
"SecRule ARGS \"@contains test\" \"pass\"",
|
|
"SecRule ARGS \"@contains /test.txt\" \"allow\"",
|
|
"SecRule ARGS:teste \"@contains /test.txt\" \" allow,deny\"",
|
|
"SecRule ARGS \"@contains /test.txt\" \"allow, allow,deny\""
|
|
|
|
]
|
|
}
|
|
]
|