9 Feb 14:00
Multiple alerts received "Request Missing an Accept Header"
Gagan Bhatia <Gagan.Bhatia <at> tcs.com>
2010-02-09 13:00:30 GMT
2010-02-09 13:00:30 GMT
Dear Mailing List
We were trying implementing Modsecurity with IBM IHS server. I am receiving multiple alerts related to Request Missing an Accept Header. Can any one enlighten on the same.
[Tue Feb 09 18:16:41 2010] [error] [client x.x.x.x.] ModSecurity: Warning. Match of "rx ^OPTIONS$" against "REQUEST_METHOD" required. [file "/opt/SomePATH/conf/modsecurity/modsecurity_crs_21_protocol_anomalies.conf"] [line "41"] [id "960015"] [msg "Request Missing an Accept Header"] [severity "CRITICAL"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER"] [hostname "somedomain.com"] [uri "/InternalWEB/UploadServlet"] [unique_id "TzRH4wpQGAkAAFPaG8QAAACF"]
Regards
Gagan Bhatia
Tata Consultancy Services
Mailto: gagan.bhatia <at> tcs.com
Website: http://www.tcs.com
____________________________________________
Experience certainty. IT Services
Business Solutions
Outsourcing
____________________________________________=====-----=====-----===== Notice: The information contained in this e-mail message and/or attachments to it may contain confidential or privileged information. If you are not the intended recipient, any dissemination, use, review, distribution, printing or copying of the information contained in this e-mail message and/or attachments to it are strictly prohibited. If you have received this communication in error, please notify us by reply e-mail or telephone and immediately and permanently delete the message and any attachments. Thank you
------------------------------------------------------------------------------ The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com
_______________________________________________ mod-security-users mailing list mod-security-users <at> lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mod-security-users Commercial ModSecurity Appliances, Rule Sets and Support: http://www.modsecurity.org/breach/index.html
RSS Feed