Thanks Ryan - that's what I figured. I'd love to move this particular server off 1.3.x - but it won't happen in the near future unfortunately...
Any thoughts on rules for this version? Or am I best to profile my app and write my own rules with the old engine as best I can? From: Ryan Barnett [mailto:ryan.barn...@owasp.org] Sent: Monday, January 21, 2013 7:37 AM To: Kirk Halyk; owasp-modsecurity-core-rule-set@lists.owasp.org Subject: Re: [Owasp-modsecurity-core-rule-set] CRS for mod_security v1.9.5? No, we started back in 2006 with the first gen of CRS and it was written for ModSecurity v2. I am assuming there is some roadblock for you not migrating to Apache 2.x? The 1.3 branch has been long dead... You are looking at the documentation for the 1.3 version of the Apache HTTP Server, which is no longer maintained, and has been declared "end of life". If you are in fact still using the 1.3 version, please consider upgrading. The current version of the server is 2.4<http://httpd.apache.org/docs/2.4/>. -Ryan From: Kirk Halyk <kha...@bclc.com<mailto:kha...@bclc.com>> Date: Monday, January 21, 2013 10:28 AM To: "owasp-modsecurity-core-rule-set@lists.owasp.org<mailto:owasp-modsecurity-core-rule-set@lists.owasp.org>" <owasp-modsecurity-core-rule-set@lists.owasp.org<mailto:owasp-modsecurity-core-rule-set@lists.owasp.org>> Subject: [Owasp-modsecurity-core-rule-set] CRS for mod_security v1.9.5? Was a CRS ever developed/maintained for the 1.9.x version of ModSecurity? (Apache 1.3.x) Thanks! ________________________________ This email is intended only for the addressee. It may contain confidential or proprietary information that cannot be disclosed without BCLC's permission. If you have received this email in error, please notify the sender immediately and delete the email. _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org<mailto:Owasp-modsecurity-core-rule-set@lists.owasp.org> https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set ________________________________ This email is intended only for the addressee. It may contain confidential or proprietary information that cannot be disclosed without BCLC's permission. If you have received this email in error, please notify the sender immediately and delete the email.
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
