>to exclude files ending with .gif, but I probably got these calls wrong >as regexp isn't my strong side if I say so. Not even sure if I could use >a regexp there to exclude files with certain extensions? Personally I >would like to exclude .gif, .png and .jpg as they basically are the only >ones used for web sites and I can't see any way how requesting an image >file could cause any harm? > >Regards, > >Joakim
Yeah, I could use some direction on this too. I tried using FilesMatch directive in my custom rules but no dice. Anyone have this working and able to share the syntax? _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
