Hello Emilio,
Thank you very much. Glad it works out for you. We are very thankful for
people running v4.0/dev since it's a huge release and we want to weed out
as many bugs / false positives as possible before we announce it stable.
> On the other hand I am a bit familiar with previous core ruleset versions,
> v3, in this version there are rules don't include in v4.0 like DoS o
> Geolocation, could you let us know if there is some plan of including them
> in this version? can you also let us know the reason why they have been
> discarded from this v4.0 version?
These options have always been non-mainstream for CRS. They are useful, but
not our core capability.
CRS4 brings plugin functionality. This allows us to move non-mainstream
functionality into plugins. This in turn allows to streamline the main
release to make it easier to run CRS on alternative engines (that can
concentrate on the core functionality).
We have a DoS plugin, IP reprutation and GeoIP is not yet there. But I
wrote an extensive blog post about it lately.
https://www.netnea.com/cms/2022/10/12/using-geoip-information-together-with-modsecurity/
Please find the plugin registry here:
https://github.com/coreruleset/plugin-registry/
Best,
Christian
>
> Thanks!
>
> --
> You received this message because you are subscribed to the Google Groups "ModSecurity Core Rule Set project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to
modsecurity-core-rule-...@owasp.org.
> To view this discussion on the web visit
https://groups.google.com/a/owasp.org/d/msgid/modsecurity-core-rule-set-project/2367bb64-c9a6-4eaf-893f-ef76549eab03n%40owasp.org.