[Modsecurity] Gotroot mod_security rules not working with
Apache 1.3.37
Michael Shinn
mike at gotroot.com
Tue Sep 4 15:33:40 EDT 2007
Offhand, not sure... the IP is weird, the box is connecting from itself
to itself. Are you running your tests on the box to itself?
If so, that explains it. In the meantime, try commenting the SQL
injection rule out to see if that stops the false positive. Also, what
application(s) are you running on the box?
On Tue, 2007-09-04 at 07:43 -0700, Hex Star wrote:
>
>
> On 9/4/07, Michael Shinn <mike at gotroot.com> wrote:
> Thank you for the additional information.
>
> So is this happening for any and every query? This appears to
> be
> triggering for a localhost query, which is pretty strange
> itself. Do
> you have some kind of unique proxy query going on?
>
>
> Yes this is weird, I am not aware of any proxy being used. I simply
> compiled from source apache with php and mod_security, installed these
> rules and this is where I'm at. It's on Kubuntu 7.04 and is a internal
> testing machine so this isn't mission critical. Just curious why this
> is happening?
>
> Apache is 1.3.37...
>
> Thanks! :)
More information about the Modsecurity
mailing list