# effectively maintains two different context: startup, and per transaction. # RESPONSE-999-EXCLUSION-RULES-AFTER-CRS serve different purposes. # REQUEST-900-EXCLUSION-RULES-BEFORE-CRS and # methods similar to the examples specified below. # RESPONSE-999-EXCLUSION-RULES-AFTER-CRS file to modify OWASP rules using # REQUEST-900-EXCLUSION-RULES-BEFORE-CRS and the # As a result of this design paradigm users are encouraged NOT to directly # updated, the updates will not overwrite a user generated configuration file. The advantage of this is that when OWASP CRS is # inspection or if you want to alter rules that are applied. # short-circuit inspection and allow certain transactions to pass through # types of rules that would go into this file are one where you want to # The purpose of this file is to hold LOCAL exceptions for your site. # Please see the enclosed LICENSE file for full details. # Apache Software License (ASL) version 2 # The OWASP ModSecurity Core Rule Set is distributed under # Copyright (c) 2006-2016 Trustwave and contributors. # OWASP ModSecurity Core Rule Set ver.3.0.2
0 kommentar(er)
