[Modsecurity] Problems with VulnScan v6
scollins
scollins at liquidweb.com
Mon Sep 11 09:25:46 EDT 2006
On Mon, 2006-09-11 at 14:44 +0200, Johan Segernäs wrote:
> måndag 11 september 2006 14:35 skrev steven collins:
> > I've seen a ton of this too. I added this to our config since we've seen
> > it come through 2 different ways:
>
> Hmm, wont that stop pretty much? Feels very general? I think our customers
> will kill me then.. =)
>
> /Johan
We have a script installed on about 100~ of our high traffic servers
that parses the log and reports back to a central database so we can
track what rules are getting hit and how often. To be honest I have not
yet seen these rules get flagged erroneously. Not yet at least :) no one
is perfect. But they are working to block the injections we've seen.
-steven
More information about the Modsecurity
mailing list