Chaim Sanders
Chaim Sanders
Here is the issue, I actually JUST ran into this same thing and dug a bit deeper. The tenable servers won't accept a '+' sign as URL encoding for a...
btw, normally i'd make a PR to fix this, but i firmly believe the right fix for this is for Tenable to fix their webservers instead of manually crafting GET...
@zmallen based on the amount of tests we have, splitting out files per WAF would be pretty intense.
Log callback is specified via msc_set_log_cb(conf->modsec, ngx_http_modsecurity_log);
RequestHeader is part of Apache ModHeaders and not part of ModSecurity. This is just an example of how to do this on Apache. Sorry for the inconvenience
It would depend on IIS functionality and their ability to take environment variables. It seems you can use a custom response header specified in XML the question is if ModSecurities...
All versions of IIS
Tested with your branch and I can reproduce the same error on both additions and deletions. When adding or detaching multiple CMPolicies. This is def a raise condition documented in...
I have retested the latest version of the PR, it works flawlessly. The contribution guidelines indicate that comments are also an important part of prioritizing PRs, so here we go:...