Modsecurity rule RESPONSE_BODY stoped working

activa · Feb 23, 2013

Hello everyone

i have modsecurity installed , with some rules ,and my own rules .

i have noticied that the RESPONSE_BODY stopped working ; it was working perfectly , the rule is

Code:

SecRule RESPONSE_BODY "CGI-Telnet Unit-x Team Connected to" "phase:4,t:none,log,deny,status:403,id:'400011',severity:'1',msg:'Potential Php script exploit'"

i have tested so many time but not working .

what should the probleme ?

i have pgp 5.3.20 and apache 2.2 . with cloudlinux .

anyone has a idea about what is the probleme ?

Infopro · Feb 23, 2013

This thread may be relevant:
ModSecurity Changes in EasyApache 3.16 - cPanel Forums

activa · Feb 24, 2013

Infopro said:
This thread may be relevant:
ModSecurity Changes in EasyApache 3.16 - cPanel Forums

thanks , i have all detaille mentioned in the thread well done .

what i have observed , when i use gotroot rules + my own rules it work . when i use the default rules of cpanel with my own rules is not working .

Thread starter	Similar threads	Forum	Replies	Date
A	Google bot triggering OWASP modsecurity rule 949110	Security	6	Jan 17, 2023
U	Modsecurity Rule for AWS Block	Security	1	Feb 15, 2022
U	OWASP ModSecurity Core Rule Set V3.0 notifications	Security	3	Oct 8, 2020
M	ModSecurity false-positive with ConfigServer cXs ModSecurity rule	Security	3	Sep 15, 2020
M	ModSecurity rules triggered but not blocking the attacker	Security	5	Jul 6, 2020

Search

Search

Modsecurity rule RESPONSE_BODY stoped working

activa

Well-Known Member

Infopro

Well-Known Member

activa

Well-Known Member