Author Topic: How to override mod_security rule variable  (Read 212 times)

Offline Chris-M

  • Newbie
  • *
  • Posts: 9
How to override mod_security rule variable
« on: October 26, 2017, 04:19:59 AM »
We have the following mod_security rule which is loaded in 01_Init_AppsInitialization.conf:

Code: [Select]
SecAction "id:219000,phase:2,pass,setvar:'tx.xmlrpc_watch_period=300',setvar:'tx.xmlrpc_requests_limit=5',setvar:'tx.xmlrpc_block_timeout=600',nolog"
How can we override the tx.xmlrpc_requests_limit value for a specific domain via the domain's Apache vhost configuration file? I would like to set tx.xmlrpc_requests_limit=10 for a single domain but keep the global value set at 5 (as per the default value in the line above).

Thanks in advance.

Offline TDmitry

  • Head CWAF Rule Writing Team
  • Comodo's Hero
  • *****
  • Posts: 369
Re: How to override mod_security rule variable
« Reply #1 on: October 26, 2017, 04:56:48 AM »
Hi Chris, we are looking for a generic solution of redefining variables, but we haven't it yet. We will announce as soon as we will develop correct solution.

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek