Hi,
I have false positive on rule id: 970902, from crs_50_outbound
The scenario is when someone is crawling in the websites, first can visit
particular pages but after going to other links and then wants to come back to
the same page, then the rule will activate,
it is information leakage rule, does anyone change the rule?
I wonder is there any document to explain the rule reason or the kind of
attacks they can prevent?
Thanks,
Best regards
~Iman Vakili
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
