Re: turning off modsec completely for a location possible ?

Hi sorry no im using 2.0.4, ive even set Locations within a included 
custom conf which is being loaded outside the virtualhost conf and it 
doesnt seem rules or some rules are being overrided.

Im even getting filterring still for non dynamic requests like faviicon 
! should i just turn off the ACCEPT and user agent header filter ?

--8be97e3d-A--
[29/Nov/2006:18:06:52 --0500]
--8be97e3d-B--
GET /favicon.ico HTTP/1.1
Host: gunzblazing.com

--8be97e3d-F--
HTTP/1.1 200 OK
Last-Modified: Fri, 28 Jul 2006 02:13:51 GMT
ETag: "12e80a1-8be-dd0b35c0"
Accept-Ranges: bytes
Content-Length: 2238
Content-Type: image/x-icon

--8be97e3d-H--
Message: Warning. Operator EQ match: 0. [id "60009"] [msg 
"(default/protocol_violations.conf) Request Missing a User Agent 
Header"] [severity "CRITICAL"]
Stopwatch:
Producer: ModSecurity v2.0.4 (Apache 2.x)
Server: Apache/2.0.55 (Unix) PHP/4.4.4 mod_fastcgi/2.4.2 mod_ssl/2.0.55 
OpenSSL/0.9.8a



Ivan Ristic wrote:
> On 11/28/06, Dan Rossi <spam@xxxxxxxxxxxxxxxx> wrote:
>>
>>  Im trying to work out how to turn off mod sec filtering completely 
>> for a
>> location path set in the vhost config.
>>
>>  If i put the SecRuleInheritance Off setting inside the vhost or 
>> inside the
>> location i get a segmentation fault, running apache 2.0.59, mod sec 2 
>> and
>> freebsd 6.1
>
> Which version of ModSecurity exactly? There was a bug in < 2.0.4 that
> could cause what you describe.
>
>>
>>  None of these directives will turn it off, and when loading an enormous
>> ammount of rules its going to be tedious to override them all.
>>
>>  when i turn these off, its still filtering
>>
>>  SecRuleEngine Off
>>  SecAuditEngine Off
>>  SecRequestBodyAccess Off
>>  SecResponseBodyAccess Off
>>
>>  <LocationMatch /admin/>
>>  #SecRuleInheritance Off
>>  #SecRuleEngine Off
>>  #SecAuditEngine Off
>>  #SecRequestBodyAccess Off
>>  #SecResponseBodyAccess Off
>>  </LocationMatch>
>>
>>  i get errors like this
>>
>>  ue Nov 28 12:42:34 2006] [notice] child pid 68279 exit signal 
>> Segmentation
>> fault (11)
>>  [Tue Nov 28 12:42:34 2006] [notice] child pid 68278 exit signal
>> Segmentation fault (11)
>>  [Tue Nov 28 12:42:34 2006] [notice] child pid 68277 exit signal
>> Segmentation fault (11)
>>
>> ------------------------------------------------------------------------- 
>>
>> Take Surveys. Earn Cash. Influence the Future of IT
>> Join SourceForge.net's Techsay panel and you'll get the chance to 
>> share your
>> opinions on IT & business topics through brief surveys - and earn cash
>> http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV 
>>
>>
>> _______________________________________________
>> mod-security-users mailing list
>> mod-security-users@xxxxxxxxxxxxxxxxxxxxx
>> https://lists.sourceforge.net/lists/listinfo/mod-security-users
>>
>>
>>
>
>

-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV