Hi Team, I am a ModSecurity newbie. It’s very interesting Firewall. It’s like Maldives ocean for me. The more I am digging it, I am getting new world of opportunities and features and control over my application traffic. Simply I am in love with ModSecurity. I am using it with RHEL 6.5. I have gone through with https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual . It has given me the basic concepts. But it has very high level details. Is there any tutorial available online which have some good examples.
At present I am desperately looking for some help about the External Entity. I have multiple modules in my application which have difference URI and each resource could have its own XSDs to control payloads. Is there any way from which I can control my all modules from ModeSucrity @ValidateSchema not to allow external entities? Looking forward for help ☺ Thanks, Lokesh ============================================================================================================================ Disclaimer: This message and the information contained herein is proprietary and confidential and subject to the Tech Mahindra policy statement, you may review the policy at http://www.techmahindra.com/Disclaimer.html externally http://tim.techmahindra.com/tim/disclaimer.html internally within TechMahindra. ============================================================================================================================
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
