You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
38 lines
1.4 KiB
38 lines
1.4 KiB
commit dfc3718f0a302ea3deb5f1a325d35fce0e4cfa48
|
|
Author: Yann Cézard <ycezard@viareport.com>
|
|
Date: Thu Apr 25 14:48:38 2019 +0200
|
|
|
|
DOC: contrib/modsecurity: Typos and fix the reject example
|
|
|
|
Thanks to https://www.mail-archive.com/haproxy@formilux.org/msg30056.html
|
|
|
|
This patch may be backported to 1.9 and 1.8.
|
|
|
|
(cherry picked from commit 494ddbff478d880e48de490f2689607addac70bc)
|
|
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
|
|
(cherry picked from commit 850896603086877641272d6e4075e66bd91f2e50)
|
|
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
|
|
|
|
diff --git a/contrib/modsecurity/README b/contrib/modsecurity/README
|
|
index e6cb305e..8031389d 100644
|
|
--- a/contrib/modsecurity/README
|
|
+++ b/contrib/modsecurity/README
|
|
@@ -88,15 +88,15 @@ HAProxy configuration. For example:
|
|
balance roundrobin
|
|
timeout connect 5s
|
|
timeout server 3m
|
|
- server iprep1 127.0.0.1:12345
|
|
+ server modsec1 127.0.0.1:12345
|
|
|
|
The modsecurity action is returned in a variable called txn.modsec.code. It
|
|
contains the HTTP returned code. If the variable contains 0, the request is
|
|
clean.
|
|
|
|
- tcp-request content reject if { var(txn.modsec.code) -m int gt 0 }
|
|
+ http-request deny if { var(txn.modsec.code) -m int gt 0 }
|
|
|
|
-With this rule, all the request not clean are reected.
|
|
+With this rule, all the request not clean are rejected.
|
|
|
|
|
|
Known bugs, limitations and TODO list
|