Apache error log does not work for blocking actions.

owasp-modsecurity / ModSecurity-apache

ModSecurity v3 Apache Connector

Apache License 2.0

87 stars 51 forks source link

Apache error log does not work for blocking actions. #67

Open onursehitoglu opened 4 years ago

onursehitoglu commented 4 years ago

Setting any rule with action "log,deny" does not generate apache error log entry. It works for SecRuleEngine DetectionOnly . "log,success" also works in both SecRuleEngine On and DetectionOnly.

Is there a workaround for this?

HebrewzHammer commented 4 years ago

Yea, I'm seeing the same behavior.