I enabled modsecurity: "true" and enable-owasp-modsecurity-crs: "true" via the configmap of the nginx ingresss controller according to this link . In the annotation of the ingress I set SecRuleEngine On. When I use nikto to do some scans and try to trigger the owasp rules I only see 400 responses in the ingress logging. I would expect 403 responses. Anyone any idea on what I am doing wrong or what to check?
Related Questions in KUBERNETES
- Golang == Error: OCI runtime create failed: unable to start container process: exec: "./bin": stat ./bin: no such file or directory: unknown
- I can't create a pod in minikube on windows
- Oracle setting up on k8s cluster using helm charts enterprise edition
- Retrieve the Dockerfile configuration from the Kubernetes and also change container Java parameter?
- Summarize pods not running, by Namespace and Reason - I'm having trouble finding the reason
- How to get Java running parameters from Spring Boot running inside container in pod where no ps exist
- How do we configure prometheus server to scrape metrics from a pod with Istio sidecar proxy?
- In rke kube-proxy pod is not present
- problem with edge server registration in Eureka
- Unable to Access Kubernetes LoadBalancer Service from Local Device Outside Cluster
- Kubernetes cluster on GCE connection refused error
- Based on my experience, I've outlined the Kubernetes request flow. Could someone please add or highlight any points I might have overlooked?
- how to define StackGres helm chart "restapi" values to use internal LoadBalancer - AWS EKS
- Python3.11 can't open file [Errno 2] No such file or directory
- Cannot find remote pod service - SERVICE_UNAVAILABLE
Related Questions in KUBERNETES-INGRESS
- How can the ingress controller receive traffic from a certain port in loadbalancer to a specific path
- Cannot Access kubernetes application via ingress on Docker Desktop
- Error while minikube addons enable ingress on windows
- Nginx-Ingress connection to service timed out. 504 Gateway Timeout returned
- "Readiness probe failed: HTTP probe failed with statuscode: 503" at NGINX Insgress Controller pod in Kubernetes cluster
- Kubernetes Ingress Port to Port route
- Error configuration for nginx-ingress controller
- nginx-ingress is not able to route to pod application
- How to set AzureIngressProhibitedTarget without hostname?
- http app unreachable from tailscale and funnel and k8s
- How add a label from header in ingress-nginx for prom metrics
- helm chart testing connection failed
- 504 gateway timeout can lead to DB connection leak and how to fix
- Redirect from one alb to another one based on Authorization header content
- Next.js deployed locally with Kind - Error 502 Bad Gateway NGINX
Related Questions in MOD-SECURITY2
- Fine-tuning mod_security rule 942100
- How to prevent duplicate requests in apache2
- Getting ModSecurity: Access denied with code 44 on Laravel Form Submit
- How do I use ModSecurity's transformation function to encode the request_body
- Modsecurity block Google tag manager iframe
- Modsecurity Custom Lua Rule Not Capturing REQUEST_HEADERS
- Modsecurity block access from all countries except from a specific IP or specific remote host
- Keycloak with mod-security
- How to block based on request content to a specific file?
- Allow Mod-Security for request uri
- How to install Modsecurity 2.9.6 on Debian 11 with Apache2?
- `http.service` fail to start with `exit-code` or `protocol`
- Modsecurity V3.0: OpenLiteSpped how to block cookie
- administer wordpress despite 406 blocks from modsecurity
- configure: error: unrecognized option: `--add-dynamic-module=/usr/local/src/ModSecurity-nginx'
Related Questions in NGINX-INGRESS
- Minikube tunnel - Ingress not working on windows
- Nginx-Ingress connection to service timed out. 504 Gateway Timeout returned
- "Readiness probe failed: HTTP probe failed with statuscode: 503" at NGINX Insgress Controller pod in Kubernetes cluster
- Kubernetes Ingress Port to Port route
- nginx ingress TCP port Enable Sticky based routing
- Ingress to route gRPC calls and http calls
- I want to connect my iOS simulator to Ingress-nginx
- Does ingress-nginx-controller have to be present on every node?
- SFTPGo with nginx-ingress controller on GKE
- Expose a service in a Kubernetes cluster to the outside using Ingress
- NGINX doesn't resolve when website is accessing through Mozila Firefox browser
- SecRule REQUEST_HEADERS:Content-Type to parse XML & JSON for Ingress k8s
- GCP, Nginx-Ingress: Network Endpoint Groups(NEG) not getting created for shared network
- How to enable proxy protocol v2 in Nginx Ingress Controller on Kubernetes?
- Make Nginx Ingress Controller work on AWS
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Popular Tags
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Followed the instructions on: https://karlstoney.com/2018/02/23/nginx-ingress-modsecurity-and-secchatops/
The only thing I had to change was "SecAuditLog /var/log/modsec/audit.log". Changed it to SecAuditLog /var/log/modsec_audit.log