azurit
azurit
When i run Pidgin, which is set to stay offline after starting, the tray icon is set to 'online' (the one with green circle) about 90% of time even when...
**Describe the bug** Currently, there's no way how to update target of chained rules. Would be cool to have support for offsets similar to `SecRuleUpdateActionById` directive. **Server (please complete the...
**Describe the bug** When blocking a request, which uses output compression (for example Content-Encoding: gzip), in phase 4 (so response headers are already created by application), blocking is NOT done...
### Motivation Handling of false positives is a hard task and cannot be done without proper tools. This plugin can be used to do most of the work. ### Proposed...
As URL structure is much different from version 5.1, new exclusion package/plugin needs to be created for versions above 5.1. This exclusion rules plugin is ready and needs testing.
### Describe the bug Tests `942290-3` and `942290-4` are the same: https://github.com/coreruleset/coreruleset/blob/v4.0/dev/tests/regression/tests/REQUEST-942-APPLICATION-ATTACK-SQLI/942290.yaml Merged here: https://github.com/coreruleset/coreruleset/pull/2579 ### Solution 1. Contact PR author (@rekter0) and ask him to fix the test as...
### Description I'm experiencing lots of FPs with rule `953120` for `Content-encoding: gzip` data. In all cases i analyzed, FPs were caused by these strings in gzip data: ```
WP Encrypt is entering infinite loop on every login into wp-admin while running with open_basedir enabled (=jailed inside document root), which is causing all CPU time consumption and possible DoS....
Adding missing tag `OWASP_CRS` to (almost) all rules so it's all disabled when using `ctl:ruleRemoveByTag=OWASP_CRS`. Also adding missing `ver` action to (almost) all rules. Not sure if tag `OWASP_CRS` should...
Hi, `FusionInventory Agent` is using invalid value for `Content-Type` header: `application/x-compress-zlib`. See, for example, here for complete list of valid MIME types: https://www.freeformatter.com/mime-types-list.html Even more, requests using such value for...