Barnoux
Barnoux
Thank for the answer, do you know how can i do then to have only the exact number of agents based on the limit parameter ? if i still for...
With some time, i finally find a solution. I just have to use the break statement to exit the loop when i have the number of agents that i want....
Thanks a lot! :)
Hello, @rholden3 it actually works for me with OWASP_CRS/4.0.0-RC1. I tried OWASP_CRS/3.2.3 and OWASP_CRS/3.3.4 and i still have the same error "failed to compile rule"
From my point of view, the **SecRequestBodyNoFilesLimit** is usefull i you want to use coraza to do analysis on file upload. Today if you want to analyse a file upload...
Can't wait to see the feature ! I have so much trouble to deal with false positive rule when ARGS look like this : ARGS:json.login.uris.0.uri ARGS:json.login.uris.1.uri ARGS:json.passwordHistory.2.password ARGS:json.passwordHistory.1.password ARGS:json.passwordHistory.0.password etc...
@jcchavezs I can try to work on a use case with Vaultwarden, but i don't know exactly what you need.
Hi, as I enhance the configuration of CRS for the Vaultwarden application, I've encountered a scenario where employing regex for the ctl key, specifically for ARGS, could be beneficial. In...
Hello, it doesn't fix it. I'm still having the same issue.
From another question that i have on the wiki conversation of coraza : https://github.com/corazawaf/coraza/discussions/662, i got the same issue duplicate modsecurity fields's in caddy logs's .