-
Hello, i'm trying to block countries IP but i don't understand where i can use my custom rules.
I create a new service (i'm using docker swarm) like this :
```shell
waf:
image: owasp/mods…
-
** Description of the bug **
On modsecurity v3 and OWASP CRS 4.x there are a lot of password rule matching and we notice the password printed into the modsecurity audit logs. We also noticed that san…
-
Hi !
Thanks for the great job on this project !
I was wondering if that would be possible to include modsecurity as a WAF ? I know that there is already a switch to "block common exploits" but …
-
ModSecurity reports:
```
[data "Matched Data: novc found within ARGS:LoginPassword: il0veGrandpa!@#"]
```
I'm not sure what it's objecting to. It's pretty clear that I'm going to have to disable…
-
In order to implement a production grade ingress controller in many organizations, security mandates that a WAF be placed in front of applications to prevent poorly written web applications from being…
-
### Name and Version
bitnami/nginx-ingress-controller 10.3.0
### What architecture are you using?
amd64
### What steps will reproduce the bug?
Trying to deploy latest `nginx-ingress-con…
LeTuR updated
1 month ago
-
**Description of the problem**
What is not working - injected backend config when using Ingress annotations:
haproxy-ingress.github.io/waf: "modsecurity"
haproxy-ingress.github.io/waf-mode:…
-
Both the documentation and the conversations and issues in the GitHub repository are unclear about `modsecurity`.
## Checklist
- Have you pulled and found the error with `jc21/nginx-proxy-manager:…
-
Hi Marc,
Does your image use Modsecurity or anything similar?
If now, is it planned?
Regards
Mike
-
I'd like to configure the Nginx Ingress Controller to optimize the handling of file upload requests by buffering them into temporary files instead of utilizing memory. Specifically when modsecurity(WA…