Hi!
I have a site running the Magento (1.6.2) shopping cart web frame and
just myself accessing root of web triggers freaking 269 lines in the
apache error log! It was 257 when I found out about it, but checking
things I noticed there was an update of ModSecurity from 2.6.4 to 2.6.5
and Rules from 2.2.3 to 2.2.4 but it just seem to have made it worse
though. Interestingly though the logged error appears to be rather
different from one version to the next 2.6.4/2.2.3 vs 2.6.5/2.2.4 while
the web site remains the same.
rules 2.2.3 log can be found here: http://pastebin.com/uxDS7gP5
rules 2.2.4 log here: http://pastebin.com/SkHZXYBD
Nice if someone could explain how this can be, although of course I
understand the rules have changed between the 2 releases. I also
understand the reason for the huge amount of lines is because accessing
the site triggers several request, but ModSec seam to snap at almost
everything like, including image files, like a wind dog!
/Joakim
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
