Hi,
i'm trying to use the session hijacking protection but have some problems
with it.
The Rules 981057 and 981063 are never matching because they check a normal
IP with a encoded IP (t:sha1,t:hexEncode) so the ip is never saved in the
collection.
I changed "^(\d{1,3}\.\d{1,3}\.\d{1,3}\.)" to "(.*)" after that the Rules
are working.
Is this the right approach to fix this or should this be fixed in another
way?
Thanks in Advance
Michael
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
