Hi there,

I have two questions about custom mod-sec rules for CRS, hope you could help me.

Here are my custom-files:
http://pastebin.com/yTAAC4CP
http://pastebin.com/raw.php?i=yTAAC4CP

Question 1:
I've got two files, one on the beginning of the CRS and one after the CRS is loaded. Did I need both of them? Or is it ok if all my modifications are at the begin / end?

Question 2:
I try to update a target in the second file (modsecurity_crs_70_post_custom.conf), the targeted rule is in phase:2, should this rule also in the second phase?


Best regards,
Jan

_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set

Reply via email to