Is the rule of CSRF contained in OWASP CRS 3.2.0 version?
28 views
Skip to first unread message
林小柔
May 20, 2022, 12:29:52 AM5/20/22
to ModSecurity Core Rule Set project
I wonder is there contained the rule of CSRF in OWASP CRS 3.2.0 version?
If no, can I use the rule of both 2.2.9 version and 3.2.0 version in the same time?
If no, can I use the rule of both 2.2.9 version and 3.2.0 version in the same time?
Because I found there is a rule of CSRF in the 2.2.9 version.
Felipe Zipitria
May 29, 2022, 8:11:55 PM5/29/22
to ModSecurity Core Rule Set project, lyr...@gmail.com
The rule was present in early versions but since mostly all web frameworks have caught up and it might not make sense anymore.
What problem are you trying to solve?
Felipe.
Reply all
Reply to author
Forward
0 new messages