Latest update to 1.13 re-enabled previously whitelisted rules.
Is there a way to import these, rather than the tedious and error prone manual update?
Currently excluded:
211720
211570
212000
212010
212280
212640
212650
212660
212750
212800
212900
213020
213070
CSF has a good interface for handling this. If I added the above to /usr/local/apache/conf/modsec2.whitelist.conf , would it take effect, or be overridden?
Hi!
For now it would be overridden during update. But you can create symlink, for example:
So you can use CSF to create whitelists available for CWAF.
In next releases we plan to add interface for whitelisted rules, so you will be able to erase this symlink.
So are you saying that CSF and CWAF are compatible if you link the files? Been trying to understand compatability.
Since CSF is working with modsec2.whitelist.conf and this file is linked to CWAF directory - yes, CFS can be used to edit file recognized by CWAF for now.