If my understanding correctly, there are possible 3 ways for libinjection to be useful:
-Normalizing user input, to make CRS signature-based SQLi detection works better. -Streamlining signature-based SQLi detection and libinjection to improve SQLi detection rate. -Or, libinjection and fingerprint detection as replacement to signature-based SQLi. Which direction makes more sense if community support available? Thanks, -RS From: Ryan Barnett [mailto:ryan.barn...@owasp.org] Sent: January-30-13 11:23 AM To: Rolling Stone; owasp-modsecurity-core-rule-set@lists.owasp.org Subject: Re: [Owasp-modsecurity-core-rule-set] LibInjection No, not yet. Breno will get to it eventually, however this could be expedited if someone from the community wants to help. -Ryan From: Rolling Stone <jzy2...@hotmail.com> Date: Wednesday, January 30, 2013 11:20 AM To: <owasp-modsecurity-core-rule-set@lists.owasp.org> Subject: [Owasp-modsecurity-core-rule-set] LibInjection CRS Roadmap has plan to include C Libinjection, any idea when will this integration be completed? Thanks, _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
