39 lines
1.9 KiB
Plaintext
39 lines
1.9 KiB
Plaintext
|
SecDefaultAction "log,deny,auditlog,phase:2,status:403"
|
||
|
# http://www.atomicorp.com/
|
||
|
# Atomicorp (Gotroot.com) ModSecurity rules
|
||
|
#
|
||
|
# Created by Prometheus Global (http://www.prometheus-group.com)
|
||
|
# Copyright 2005-2019 by Atomicorp, Inc. all rights reserved.
|
||
|
# Redistribution is strictly prohibited in any form, including whole or in part.
|
||
|
#
|
||
|
# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS AS IS
|
||
|
# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
||
|
# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
||
|
# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
|
||
|
# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
|
||
|
# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
|
||
|
# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
|
||
|
# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
|
||
|
# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
|
||
|
# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
|
||
|
# THE POSSIBILITY OF SUCH DAMAGE.
|
||
|
#
|
||
|
#---ASL-CONFIG-FILE---
|
||
|
|
||
|
# Do not edit this file!
|
||
|
# This file is generated and changes will be overwritten.
|
||
|
#
|
||
|
# If you need to make changes to the rules, please follow the procedure here:
|
||
|
# http://www.atomicorp.com/wiki/index.php/Mod_security
|
||
|
|
||
|
#######################################
|
||
|
#
|
||
|
# This file has been deprecated by 00_asl_accesslist.conf
|
||
|
#
|
||
|
#######################################
|
||
|
# Disable rules for hosts on the whitelist
|
||
|
# Be *VERY* careful about whom is whitelisted.
|
||
|
#Include whitelisted IPs and do not scan or block
|
||
|
SecRule REMOTE_ADDR "@ipMatchFromFile /etc/asl/whitelist" "rev:1,id:345678,phase:1,t:none,nolog,noauditlog,allow,ctl:ruleEngine=Off,ctl:auditEngine=Off"
|
||
|
#SecRule REMOTE_ADDR "@pmFromFile /etc/asl/whitelist" "rev:1,id:345678,phase:1,t:none,nolog,noauditlog,allow,ctl:ruleEngine=Off,ctl:auditEngine=Off"
|