17 Aug 15:42
Re: Performance tip
From: Ryan Barnett <rcbarnett <at> gmail.com>
Subject: Re: Performance tip
Newsgroups: gmane.comp.apache.mod-security.user
Date: 2006-08-17 13:42:57 GMT
Subject: Re: Performance tip
Newsgroups: gmane.comp.apache.mod-security.user
Date: 2006-08-17 13:42:57 GMT
This is yet another reason to switch to the Apache 2.X version. The most compelling reason is the OUTPUT filtering capability, but this is also a nice advantage.
--
Ryan C. Barnett
Web Application Security Consortium (WASC) Member
CIS Apache Benchmark Project Lead
SANS Instructor, GCIA, GCFA, GCIH, GSNA, GCUX, GSEC
Author: Preventing Web Attacks with Apache
Ryan C. Barnett
Web Application Security Consortium (WASC) Member
CIS Apache Benchmark Project Lead
SANS Instructor, GCIA, GCFA, GCIH, GSNA, GCUX, GSEC
Author: Preventing Web Attacks with Apache
On 8/17/06, Ivan Ristic <ivan.ristic <at> gmail.com
> wrote:
On 8/17/06, Ryan Barnett < rcbarnett <at> gmail.com> wrote:
>
> Doing some RegEx searching about comments... Doesn't this syntax work for
> adding comments - (?#comment)
>
> ...
>
> I just ran a test and it worked. Here is the audit_log entry -
It does, it's the PCRE comment syntax (and thus works when ModSecurity
is used with Apache 2.x, but not when it is used with Apache 1.x.)
--
Ivan Ristic, Technical Director
Thinking Stone, http://www.thinkingstone.com
ModSecurity: Open source Web Application Firewall
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ mod-security-users mailing list mod-security-users <at> lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mod-security-users
RSS Feed