Hi I've seen some false positives with the rules mentioned in the subject...
They match for SQL keywords with the @contains operator and not the @containsWord operator and therefore we see some false positives. I've done some tests where I use @containsWord instead and it seems to work and it still blocks if the words are preset...
For example, I see a username, "havingfun", which matches "having" because of @contains...
Does anyone know why the rules uses @contains and not @containsWord? /Anders _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
