> Hi there, > > This is my modsecurity_crs_15_local_exceptions file, but dont skip the TAGs > on rule. Why? > > ctl:ruleRemoveByTag='OWASP_CRS/WEB_ATTACK/SQL_INJECTION';ARGS:comentario, \ > ctl:ruleRemoveByTag='OWASP_CRS/WEB_ATTACK/COMMAND_INJECTION';ARGS:comentario, > \ > ctl:ruleRemoveByTag='OWASP_CRS/WEB_ATTACK/XSS';ARGS:texto, \ > ctl:ruleRemoveByTag='OWASP_CRS/WEB_ATTACK/SQL_INJECTION';ARGS:texto, \ > ctl:ruleRemoveByTag='OWASP_CRS/WEB_ATTACK/COMMAND_INJECTION';ARGS:texto”
Hi Cristiano, I think you mean ctl:ruleRemoveTargetByTag, and you also must not specify the ‘quotes’ around the tag. The following should hopefully work: ctl:ruleRemoveTargetByTag=OWASP_CRS/WEB_ATTACK/SQL_INJECTION;ARGS:comentario Cheers! WH -- Walter Hop | PGP key: https://lifeforms.nl/pgp
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
