removed rules in CRS4

[mahh m]

Hi,

I am investigating the CRS version 4 to use it. It seems that the DoS relevant rules (REQUEST-912-DOS-PROTECTION) and also the rules which are related to CMS frameworks (like REQUEST-903...) are removed. What are the alternative rules? how to protect against the attacks?

[Jozef Sudolsky]

Hi,

these features were moved into plugins, see:
https://github.com/coreruleset/plugin-registry

azurit





Citát mahh m <muhh...@gmail.com>:

> --
> You received this message because you are subscribed to the Google
> Groups "ModSecurity Core Rule Set project" group.
> To unsubscribe from this group and stop receiving emails from it,
> send an email to
> modsecurity-core-rule-...@owasp.org.
> To view this discussion on the web visit
> https://groups.google.com/a/owasp.org/d/msgid/modsecurity-core-rule-set-project/CAB8YvAJiDoX%3Doxp4EwdKRcRjQNnh0KhGTq3zdaNvCaZuf2-MiA%40mail.gmail.com.

[Christian Folini]

Hi there,

We have stripped down CRS and moved non-essential functionality into
plugins. The Anti-DoS Plugin is not really tested much so far, but
you can find it via the plugin registry.

https://github.com/coreruleset/plugin-registry

Best,

Christian