Dear all, I tested the var RESPONSE_CONTENT_LENGTH and RESPONSE_HEADERS:Content-Length in phase 3, but it seems that they do not work well. rules like: SecRule REQUEST_HEADERS:Content-Length "@gt 150" "phase:1,t:none,deny,log,auditlog'" SecRule RESPONSE_HEADERS:Content-Length "@gt 150" "phase:3,t:none,pass,log,auditlog"
the response content length is more than 150 bytes, but the rule get no effects.
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
