Hi there,
I have two questions about custom mod-sec rules for CRS, hope you could
help me.
Here are my custom-files:
http://pastebin.com/yTAAC4CP
http://pastebin.com/raw.php?i=yTAAC4CP
Question 1:
I've got two files, one on the beginning of the CRS and one after the
CRS is loaded. Did I need both of them? Or is it ok if all my
modifications are at the begin / end?
Question 2:
I try to update a target in the second file
(modsecurity_crs_70_post_custom.conf), the targeted rule is in phase:2,
should this rule also in the second phase?
Best regards,
Jan
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set