Hello We have recently noticed a lots of strange logs.
It occurs on several web site (WordPress sites, static web sites...) ModSecurity: Access denied with code 403 (phase 4). Matched phrase "http://"; at RESPONSE_HEADERS:Location. [file "/home/share/modsecurity/rules_slr/modsecurity_slr_50_malware_detection.conf"] [line "25"] [id "2200001"] [msg "Known Malicious Code Detected in Response Data."] [severity "WARNING"] [tag "MALICIOUS_CODE"] All warning seem triggered whenever a forwarding is in place (http header / htaccess...) Basically no redirection or forwarding is working! Any advices ? Thanks a lot. Pierre _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
