No worries. And glad it worked out in the end.

Christian

On Thu, Feb 08, 2018 at 09:21:58AM +0000, Wisse J.S. (Jeroen) wrote:
> Hey Christian,
> 
> Although you could not figure out what went wrong, I did!
> Somehow I downloaded an old version of the CRS, after downloading the one via 
> the link in your tutorial everything works like it should.
> 
> Thanks for the help and sorry for making such a simple mistake :)
> 
> Jeroen
> 
> -----Oorspronkelijk bericht-----
> Van: Christian Folini [mailto:christian.fol...@netnea.com] 
> Verzonden: donderdag 8 februari 2018 6:04
> Aan: Wisse J.S. (Jeroen) <js.wi...@zeeland.nl>
> CC: 'owasp-modsecurity-core-rule-set@lists.owasp.org' 
> <owasp-modsecurity-core-rule-set@lists.owasp.org>
> Onderwerp: Re: [Owasp-modsecurity-core-rule-set] Error creating rule: Unknown 
> variable: pk_ref)/
> 
> Hey Jeroen,
> 
> This is an ancient bug actually:
> 
> https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEyjaeoR0g&u=https%3a%2f%2fgithub%2ecom%2fSpiderLabs%2fowasp-modsecurity-crs%2fissues%2f181
> 
> It is fixed since the release of CRS 3.
> 
> Given you base on my tutorial which follows that version, I do not know how 
> you could encounter it.
> 
> Regs,
> 
> Christian
> 
> On Wed, Feb 07, 2018 at 01:51:17PM +0000, Wisse J.S. (Jeroen) wrote:
> >    Hello all,
> > 
> > 
> >    I get the following error message in Windows event viewer when i try to
> >    launch apache with the core ruleset enabled:
> > 
> >    Error creating rule: Unknown variable: pk_ref)/
> > 
> > 
> >    I am using the following tutorial to setup apache and mod_security:
> > 
> >    [1]https://www.netnea.com/cms/apache-tutorial-7_including-modsecurity-c
> >    ore-rules/
> > 
> > 
> >    HTTPD –V:
> > 
> > 
> >    Server version: Apache/2.4.23 (Win64)
> > 
> >    Apache Lounge VC11 Server built:   Jul  8 2016 11:33:36
> > 
> >    Server's Module Magic Number: 20120211:61
> > 
> >    Server loaded:  APR 1.5.2, APR-UTIL 1.5.4
> > 
> >    Compiled using: APR 1.5.2, APR-UTIL 1.5.4
> > 
> >    Architecture:   64-bit
> > 
> >    Server MPM:     WinNT
> > 
> >      threaded:     yes (fixed thread count)
> > 
> >        forked:     no
> > 
> >    Server compiled with....
> > 
> >    -D APR_HAS_SENDFILE
> > 
> >    -D APR_HAS_MMAP
> > 
> >    -D APR_HAVE_IPV6 (IPv4-mapped addresses disabled)
> > 
> >    -D APR_HAS_OTHER_CHILD
> > 
> >    -D AP_HAVE_RELIABLE_PIPED_LOGS
> > 
> >    -D DYNAMIC_MODULE_LIMIT=256
> > 
> >    -D HTTPD_ROOT="/apache"
> > 
> >    -D SUEXEC_BIN="/apache/bin/suexec"
> > 
> >    -D DEFAULT_PIDLOG="logs/httpd.pid"
> > 
> >    -D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
> > 
> >    -D DEFAULT_ERRORLOG="logs/error.log"
> > 
> >    -D AP_TYPES_CONFIG_FILE="conf/mime.types"
> > 
> >    -D SERVER_CONFIG_FILE="conf/httpd.conf"
> > 
> > 
> >    HTTPD –M:
> > 
> > 
> >    Loaded Modules:
> > 
> >    core_module (static)
> > 
> >    win32_module (static)
> > 
> >    mpm_winnt_module (static)
> > 
> >    http_module (static)
> > 
> >    so_module (static)
> > 
> >    access_compat_module (shared)
> > 
> >    actions_module (shared)
> > 
> >    alias_module (shared)
> > 
> >    allowmethods_module (shared)
> > 
> >    asis_module (shared)
> > 
> >    auth_basic_module (shared)
> > 
> >    authn_core_module (shared)
> > 
> >    authn_file_module (shared)
> > 
> >    authz_core_module (shared)
> > 
> >    authz_groupfile_module (shared)
> > 
> >    authz_host_module (shared)
> > 
> >    authz_user_module (shared)
> > 
> >    autoindex_module (shared)
> > 
> >    env_module (shared)
> > 
> >    headers_module (shared)
> > 
> >    include_module (shared)
> > 
> >    isapi_module (shared)
> > 
> >    log_config_module (shared)
> > 
> >    mime_module (shared)
> > 
> >    negotiation_module (shared)
> > 
> >    setenvif_module (shared)
> > 
> >    socache_shmcb_module (shared)
> > 
> >    proxy_module (shared)
> > 
> >    proxy_http_module (shared)
> > 
> >    logio_module (shared)
> > 
> >    unique_id_module (shared)
> > 
> >    ssl_module (shared)
> > 
> >    security2_module (shared)
> > 
> > 
> >    Does anyone have any idea how I can fix this issue? I tried searching
> >    google but could not find a solution.
> > 
> > 
> >    Met vriendelijke groet,
> > 
> > 
> >    Jeroen Wisse | GIS infrastructuur ontwikkeling en beheer
> > 
> >    T. +31 118 631725 | E. [2]js.wi...@zeeland.nl
> > 
> > 
> >    cid:image001.png@01D1E102.89F8E770
> > 
> >    Provinciehuis | Abdij 6, 4331 BK Middelburg | +31 118 631011
> >    Postbus 6001, 4330 LA Middelburg | 
> > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEj1Y-Mf0A&u=http%3a%2f%2f3%5dwww%2ezeeland%2enl
> >  | [4]@provzeeland
> >    | 
> > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJE3_Y7EdiA&u=http%3a%2f%2f5%5dfacebook%2ecom%2fprovinciezeeland
> >  | 
> > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJBv-NLYQ0w&u=http%3a%2f%2f6%5dinstagram%2ecom%2fprovinciezeeland
> >    | 
> > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-F
> > t9nJErwNOIehQ&u=http%3a%2f%2f7%5ddataportaal%2ezeeland%2enl
> > 
> > References
> > 
> >    1. 
> > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEv1NLNIgw&u=https%3a%2f%2fwww%2enetnea%2ecom%2fcms%2fapache-tutorial-7%5fincluding-modsecurity-core-rules%2f
> >    2. mailto:/
> >    3. 
> > http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEv-ZeMehQ&u=http%3a%2f%2fwww%2ezeeland%2enl%2f
> >    4. 
> > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJBz0ZOIZiA&u=https%3a%2f%2ftwitter%2ecom%2fprovzeeland
> >    5. 
> > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJESkaONI1Q&u=https%3a%2f%2fwww%2efacebook%2ecom%2fprovinciezeeland
> >    6. 
> > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJE__ZOMchA&u=https%3a%2f%2fwww%2einstagram%2ecom%2fprovinciezeeland%2f
> >    7. 
> > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-F
> > t9nJE73aeAchg&u=https%3a%2f%2fdataportaal%2ezeeland%2enl%2f
> 
> 
> 
> > _______________________________________________
> > Owasp-modsecurity-core-rule-set mailing list 
> > Owasp-modsecurity-core-rule-set@lists.owasp.org
> > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-F
> > t9nJEj3aeNLiA&u=https%3a%2f%2flists%2eowasp%2eorg%2fmailman%2flistinfo
> > %2fowasp-modsecurity-core-rule-set
> 
> 
> --
> https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEjwZ-BKhQ&u=https%3a%2f%2fwww%2efeistyduck%2ecom%2ftraining%2fmodsecurity-training-course
> https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJE_zYOpMiQ&u=https%3a%2f%2fwww%2efeistyduck%2ecom%2fbooks%2fmodsecurity-handbook%2f
> mailto:christian.fol...@netnea.com
> twitter: @ChrFolini

-- 
https://www.feistyduck.com/training/modsecurity-training-course
https://www.feistyduck.com/books/modsecurity-handbook/
mailto:christian.fol...@netnea.com
twitter: @ChrFolini
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set

Reply via email to