24 Oct 11:19 2014René Bauer
*Problem with SLR rule 2200001
23 Oct 14:05 2014Tom Chiverton
*Can't seem to prevent matches being listed in Apache error_log
23 Oct 17:08 2014Tom Chiverton
**Can't seem to prevent matches being listed in Apache error_log
22 Oct 23:57 2014Ryan Barnett
*Welcoming Chaim Sanders to the SpiderLabs Research Team
23 Oct 00:12 2014J. Tozo
**Welcoming Chaim Sanders to the SpiderLabs Research Team
23 Oct 14:23 2014Walter Hop
**Welcoming Chaim Sanders to the SpiderLabs Research Team
21 Oct 04:34 2014Brian Clark
*Troubleshooting ModSecurity IIS Module Conflicts
21 Oct 10:40 2014Reindl Harald
**Troubleshooting ModSecurity IIS Module Conflicts
18 Oct 20:59 2014Brian Clark
*Blocking AJAX CORS requests?
17 Oct 02:01 2014Abhijit Mitra
*Same audit log directory for multiple ModSec installations?
16 Oct 19:53 2014Dan Goldberg
*inconsistent 413 status codes
16 Oct 20:21 2014Abhijit Mitra
**inconsistent 413 status codes
16 Oct 20:34 2014Dan Goldberg
***inconsistent 413 status codes
16 Oct 20:40 2014Christian Folini
**inconsistent 413 status codes
16 Oct 19:23 2014Christopher Stanley
*Latest libxml2 port to RHEL4
16 Oct 20:19 2014Reindl Harald
**Latest libxml2 port to RHEL4
16 Oct 20:56 2014Christopher Stanley
***Latest libxml2 port to RHEL4
16 Oct 21:42 2014J. Tozo
****Latest libxml2 port to RHEL4
16 Oct 21:59 2014Christopher Stanley
*****Latest libxml2 port to RHEL4
16 Oct 22:29 2014J. Tozo
******Latest libxml2 port to RHEL4
16 Oct 23:10 2014Christopher Stanley
*******Latest libxml2 port to RHEL4
14 Oct 11:12 2014Tobi
*Problem with allowed_http_versions
13 Oct 14:33 2014Felipe Costa
*[Mod-security-rules] mod sec rule to execute lua script
13 Oct 10:29 2014Jutichai Thongkrachai
*Cannot do a white list for bypassing one computer through mod_security
13 Oct 11:54 2014Craig Lawson
**Cannot do a white list for bypassing one computer through mod_security
11 Oct 11:38 2014Kentaro Kan
*AUTO: Kentaro Kan is out of the office. (returning 2014/10/14)
11 Oct 04:52 2014Glen Messenger
*Rule ordering
11 Oct 10:15 2014Achim Hoffmann
**Rule ordering
10 Oct 17:40 2014Brian Clark
*ModSecurity 2.8.0 still running while "enabled=false" in IIS
10 Oct 23:05 2014Brian Clark
**ModSecurity 2.8.0 still running while "enabled=false" in IIS
13 Oct 15:43 2014Felipe Costa
***ModSecurity 2.8.0 still running while "enabled=false" in IIS
13 Oct 17:41 2014Brian Clark
****ModSecurity 2.8.0 still running while "enabled=false" in IIS
13 Oct 19:03 2014Brian Clark
*****ModSecurity 2.8.0 still running while "enabled=false" in IIS
8 Oct 03:17 2014Hoang Hai Nam
*ModSecurity as revserse proxy to protect many sites behind
8 Oct 06:33 2014Christian Folini
**ModSecurity as revserse proxy to protect many sites behind
8 Oct 09:33 2014Muenz, Michael
**ModSecurity as revserse proxy to protect many sites behind
2 Oct 16:08 2014Ronald.Ploeger
*SecRule '200005' - MSC_PCRE_LIMITS_EXCEEDED: PCRE match limits were ex
1 Oct 21:44 2014Glauco Gil
*Bug with mod_security
1 Oct 21:56 2014Reindl Harald
**Bug with mod_security
29 Sep 14:21 2014Reindl Harald
*"Generic" ShellShock Rules
29 Sep 07:32 2014Vladimir
*XML XSD schema validation
28 Sep 07:05 2014CatchesA Star
*Passing IP to script via exec
28 Sep 16:30 2014Josh Amishav-Zlatin
**Passing IP to script via exec
28 Sep 17:43 2014Dan Goldberg
**Passing IP to script via exec
25 Sep 22:01 2014Jeremiah Brock
*modsecurity 2.8 mlogc using 100% cpu bug
26 Sep 18:52 2014David C. Allmon
**modsecurity 2.8 mlogc using 100% cpu bug
29 Sep 09:09 2014Hermann Schwaerzler
***modsecurity 2.8 mlogc using 100% cpu bug
29 Sep 09:41 2014Craig Lawson
****modsecurity 2.8 mlogc using 100% cpu bug
29 Sep 15:40 2014David C. Allmon
****modsecurity 2.8 mlogc using 100% cpu bug
29 Sep 17:54 2014Jeremiah Brock
*****modsecurity 2.8 mlogc using 100% cpu bug
24 Sep 22:14 2014Ryan Barnett
*Bash ENV Vuln - CVE-2014-6271
28 Sep 14:18 2014Jesús Alfredo Cambera
**Bash ENV Vuln - CVE-2014-6271
29 Sep 13:08 2014Felipe Costa
***Bash ENV Vuln - CVE-2014-6271
29 Sep 13:22 2014Jesús Alfredo Cambera
****Bash ENV Vuln - CVE-2014-6271
24 Sep 00:06 2014Jesús Alfredo Cambera
*DOS rule blocking IP and User Agent not IP
24 Sep 00:20 2014Ryan Barnett
**DOS rule blocking IP and User Agent not IP
24 Sep 01:16 2014Jesús Alfredo Cambera
***DOS rule blocking IP and User Agent not IP
17 Sep 00:15 2014Jesús Alfredo Cambera
*DOS rule
17 Sep 09:24 2014Josh Amishav-Zlatin
**DOS rule
17 Sep 23:22 2014Jesús Alfredo Cambera
***DOS rule
24 Sep 00:01 2014Jesús Alfredo Cambera
****DOS rule
16 Sep 17:46 2014Reindl Harald
*RBL-Checks
16 Sep 22:56 2014Reindl Harald
**RBL-Checks
12 Sep 14:17 2014Ehsan Mahdavi
*About SecDefaultAction
12 Sep 15:11 2014Ryan Barnett
**About SecDefaultAction
12 Sep 17:30 2014Ehsan Mahdavi
***About SecDefaultAction
12 Sep 15:16 2014Christian Bockermann
**About SecDefaultAction
12 Sep 17:36 2014Ehsan Mahdavi
***About SecDefaultAction
12 Sep 09:51 2014Paul Beckett
*Disable logging of specific rules
12 Sep 10:44 2014laporz
**(no subject)
12 Sep 10:55 2014Ronald.Ploeger
**Disable logging of specific rules
12 Sep 11:08 2014Ehsan Mahdavi
***Disable logging of specific rules
12 Sep 11:01 2014Josh Amishav-Zlatin
**Disable logging of specific rules
12 Sep 12:56 2014Paul Beckett
***Disable logging of specific rules
11 Sep 03:25 2014Matthew Raymer
*Failed to write to DBM file
11 Sep 03:40 2014ichiro.tsubouchi
**Failed to write to DBM file
13 Sep 22:36 2014Josh Amishav-Zlatin
**Failed to write to DBM file
16 Sep 06:57 2014Matthew Raymer
**Failed to write to DBM file (Josh Amishav-Zlatin)
16 Sep 10:55 2014Josh Amishav-Zlatin
***Failed to write to DBM file (Josh Amishav-Zlatin)
9 Sep 19:48 2014Abhijit Mitra
*Event in audit log despite custom rule to address false positive
8 Sep 15:02 2014Kentaro Kan
*AUTO: Kentaro Kan is out of the office. (returning 2014/09/24)
8 Sep 12:30 2014Ronald.Ploeger
*SecPcreMatchLimit: Sensible Values
8 Sep 14:58 2014Christian Folini
**SecPcreMatchLimit: Sensible Values
6 Sep 16:59 2014Bhanu Mohanty
*ModSecurity: JSON support was not enabled
6 Sep 17:31 2014Søren Christian Aarup
**ModSecurity: JSON support was not enabled
8 Sep 09:15 2014Ronald.Ploeger
**ModSecurity: JSON support was not enabled
5 Sep 16:44 2014Guillermo Caminer
*AMF filter
5 Sep 20:22 2014Ryan Barnett
**AMF filter
4 Sep 13:54 2014Ronald.Ploeger
*SecPcreMatchLimit - Default value
4 Sep 14:25 2014Ronald.Ploeger
**SecPcreMatchLimit - Default value
4 Sep 14:24 2014Ronald.Ploeger
**SecPcreMatchLimit - Default value
3 Sep 07:55 2014Sandeep Kale (GRP00 - GROTH
*Handling False Positives
3 Sep 09:54 2014Josh Amishav-Zlatin
**Handling False Positives
2 Sep 02:40 2014Mesra.net CEO
*Upload Limit Rules
2 Sep 16:23 2014Winfried Neessen
**Upload Limit Rules
2 Sep 17:03 2014Ryan Barnett
**Upload Limit Rules
1 Sep 04:37 2014Júnior
*web defense
26 Aug 10:46 2014Dan Rowlands
*multipart parser detected a possible unmatched boundary
22 Aug 15:35 2014Ehsan Mahdavi
*About comment spam and rbl checks
22 Aug 15:12 2014Ehsan Mahdavi
*About SecDefaultAction