TechQA.

mod-security: warning, not blocking

1.7k views Asked by At

I've installed mod-security and can see from the logs that it is warning me in the case of an SQLi attempt. The attempt succeeds however, when I expect it to be prevented. Clearly I'm missing some very obvious setting, but I can't find it!

Any help appreciated.

tomcat7 mod-security
Original Q&A
1

There are 1 answers

1
Ronald On BEST ANSWER

Did you set

SecRuleEngine On

in "modsecurity.conf"? The default is 

SecRuleEngine DetectionOnly

Also see https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#SecRuleEngine

Related Questions in TOMCAT7

Related Questions in MOD-SECURITY

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions