V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
linus
V2EX  ›  信息安全

关于 modsecurity 的疑问

  •  
  •   linus · 2016-08-08 19:05:24 +08:00 · 3805 次点击
    这是一个创建于 3028 天前的主题,其中的信息可能已经有所发展或是发生改变。

    [root@xxx waf-fle-0.6.3]# /etc/init.d/mlog2waffle start Starting mlog2waffle... Starting up mlog2waffle in "tail" mode, using config file /etc/mlog2waffle.conf Error in HTTP connection: 403 Forbidden [FAILED]

    tailf /var/log/httpd/modsec_debug.log
    [08/Aug/2016:18:59:47 +0800] [maf/sid#7f937f876850][rid#7f93804cf8a8][/controller/][1] Access denied with code 403 (phase 1). Match of "rx ^0$" against "REQUEST_HEADERS:Content-Length" required. [file "/etc/httpd/crs/owasp-modsecurity-crs/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "84"] [id "960904"] [rev "2"] [msg "Request Containing Content, but Missing Content-Type header"] [severity "NOTICE"] [ver "OWASP_CRS/2.2.9"] [maturity "9"] [accuracy "9"]

    目前尚无回复
    关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   1386 人在线   最高记录 6679   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 22ms · UTC 17:30 · PVG 01:30 · LAX 09:30 · JFK 12:30
    Developed with CodeLauncher
    ♥ Do have faith in what you're doing.