Per a recent email thread on the OWASP ModSecurity CRS list (https://lists.owasp.org/pipermail/owasp-modsecurity-core-rule-set/2011-April/000732.html) - we need help from the community with identifying false positives with rules. We have therefore setup a separate mail-list whose sole purpose is to report on and discuss false positives - https://lists.sourceforge.net/lists/listinfo/mod-security-report-false-positives
Please sign-up for and use that list to send an email when you encounter a false positive with any of the CRS rules. When sending an email, please provide the following - 1. Short error_log alert message 2. Attach an audit log file showing the full transaction Thanks, Ryan _______________________________________________ Owasp-modsecurity-core-rule-set mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
