From acd9a854f5cafe23cf339b5116faf30e595b645a Mon Sep 17 00:00:00 2001
From: Victor Hora <victorhora@users.noreply.github.com>
Date: Fri, 4 Aug 2017 20:59:08 -0400
Subject: [PATCH] Adding clarifications for ENV variable as per issue #1507
 (credit @jimyolin)

---
 Reference-Manual.mediawiki | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/Reference-Manual.mediawiki b/Reference-Manual.mediawiki
index 5936a2d..3015057 100644
--- a/Reference-Manual.mediawiki
+++ b/Reference-Manual.mediawiki
@@ -2123,7 +2123,7 @@ Contains the number of milliseconds elapsed since the beginning of the current t
 ; Note : Starting with ModSecurity 2.7.0 the time is microseconds.
 
 == ENV == 
-Collection that provides access to environment variables set by ModSecurity. Requires a single parameter to specify the name of the desired variable.
+Collection that provides access to environment variables set by ModSecurity or other server modules. Requires a single parameter to specify the name of the desired variable.
 <pre>
 # Set environment variable 
 SecRule REQUEST_FILENAME "printenv" \
@@ -2131,6 +2131,9 @@ SecRule REQUEST_FILENAME "printenv" \
 
 # Inspect environment variable
 SecRule ENV:tag "suspicious" "id:16"
+
+# Reading an environment variable from other Apache module (mod_ssl)
+SecRule TX:ANOMALY_SCORE "@gt 0" "phase:5,id:16,msg:'%{env.ssl_cipher}'"
 </pre>
 
 ; Note : Use setenv to set environment variables to be accessed by Apache.