8000
Added 'ver' action with current version to all necessary rules (fix for #650) · Issue #1750 · coreruleset/coreruleset · GitHub
More Web Proxy on the site http://driver.im/
You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Issue for tracking original pull request created by user airween on date 2020-04-29 19:45:05.
Link to original PR: SpiderLabs/owasp-modsecurity-crs#1750.
A small footnote for this modification: I generated a spreadsheet for the better visibility of changes.
The column E/F contains the status of actions before, J/K after the modification. The PL control is a formula, if the id of the rule is ended up with ...011, ...012. If it's "yes", then Need 'ver' act. is "no". This means the PL control rules didn't got the ver action now.
Need to add column is "yes" if the action should be at rule (it's not PL control rule) but there isn't yet. If this is "yes" the script added it.
If the rule needs the ver and contains it after the modification, then the Check field is OK - but doesn't matter that the action was present or not. All fields must be OK in this column.
The Changed fields indicates that a change has been made (was not present before - it present after).
Definition of PL control:
id < 1000000 and (id % 1000 >= 100 or id % 1000 <= 10)
or
id > 1000000
I think this form describes the rules with skipAfter actions and doesn't affect exclusion rules. The modification affects all other SecRule and SecAction entries.
Let me know if there are still missing any ver action, or if it's unnecessary.
Issue for tracking original pull request created by user airween on date 2020-04-29 19:45:05.
Link to original PR: SpiderLabs/owasp-modsecurity-crs#1750.
HEAD is: d807570
BASE is: cf57fd5
This PR fixes #650.
A small footnote for this modification: I generated a spreadsheet for the better visibility of changes.
The column E/F contains the status of actions before, J/K after the modification. The
PL controlis a formula, if theidof the rule is ended up with...011,...012. If it's "yes", thenNeed 'ver' act.is "no". This means thePL controlrules didn't got theveraction now.Need to addcolumn is "yes" if the action should be at rule (it's not PL control rule) but there isn't yet. If this is "yes" the script added it.If the rule needs the
verand contains it after the modification, then theCheckfield isOK- but doesn't matter that the action was present or not. All fields must beOKin this column.The
Changedfields indicates that a change has been made (was not present before - it present after).Definition of
PL control:I think this form describes the rules with
skipAfteractions and doesn't affect exclusion rules. The modification affects all otherSecRuleandSecActionentries.Let me know if there are still missing any
veraction, or if it's unnecessary.Note, of course, the modification follows the expected sequence of actions.
The text was updated successfully, but these errors were encountered: