-
## Bug Description
With the [TranslatePress](https://wordpress.org/plugins/translatepress-multilingual/) and [Complianz](https://wordpress.org/plugins/complianz-gdpr/) plugins active when switching…
-
### Motivation
Handling of false positives is a hard task and cannot be done without proper tools. This plugin can be used to do most of the work.
### Proposed solution
Main purpose of the pl…
-
We use the _owasp/modsecurity-crs:4.2-nginx-202405060805_ image as a base image for our application. We deployed an application on Azure and the EDR (Microsoft Defender for Endpoint) has detected pote…
-
I can't make the `SecResponseBodyLimit` directive together with `SecResponseBodyLimitAction Reject` block oversized responses from nginx. ModSecurity-nginx reports "Headers are already sent. Cannot pe…
-
Hello!
I'm trying to setup ModSecurity but I'm dealing with issues when uploading large files.
At first I had issues uploading files so I set `SecRequestBodyAccess` to `Off`, which is working fine…
-
Hi!
Why setting `SecRequestBodyAccess Off ` doesn't fully disable parsing request body and filling ModSecurity variables?
My case:
I'm using ModSecurity with Nginx for proxying files as multipa…
-
@dune73 Following up with our discussion at the end of this evening's ModSecurity CRS Bern Meetup.
Could you come up with a list or description of your primary use cases that you use concatenations…
-
### Motivation
The reputation rules have been removed from the core.
The RBL check is now gone.
### Proposed solution
For the users of `@rbl` we can bring it back as a plugin.
-
Decided to pull out my comment to a separate issue since its unrelated to the other issue I raised originally:
I was trying to limit the relevant to 400's and 403's for capturing blocked transactio…
-
**Description**
I followed the docker-compose.yml tutorial for setting up Nextcloud (https://github.com/bunkerity/bunkerweb/blob/master/examples/nextcloud/docker-compose.yml). I can access the web in…