Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Avoid processing of subrequests initiated by the error_page #165

Closed
wants to merge 1 commit into from
Closed

Avoid processing of subrequests initiated by the error_page #165

wants to merge 1 commit into from

Conversation

defanator
Copy link
Collaborator

Closes #164, owasp-modsecurity/ModSecurity#2143.

Needs more investigation about possible effect on #76 as well.

@defanator
Copy link
Collaborator Author

defanator commented Aug 6, 2019
edited
Loading

@AirisX @LeeShan87 @met3or tagging you guys here as you were testing similar bits in #90 - would be nice to get your feedback on this one as well (i.e. if it does not break things introduced in #90 then we are fine I guess)

@bugz8unny69
Copy link

hi @defanator

I'd like to give this a shot, I suppose, I should only merge this for the time being or both #90 and this?

@defanator
Copy link
Collaborator Author

@LHorace correct.

In fact, I'm still thinking about proper way to handle this - perhaps disabling modsec processing for any subrequests would be an option, but there are obvious concerns about such approach.

@bugz8unny69
Copy link

hi @defanator

@LHorace correct.

Just to clarify, just this, alright thanks.

zimmerle added a commit that referenced this pull request Dec 9, 2019
@zimmerle
CHANGES: Adds info on #165
4ca5e15
@zimmerle
Copy link
Contributor

Merged under dev/reload.

@zimmerle
Copy link
Contributor

Merged on master! thanks!

@zimmerle zimmerle closed this Dec 11, 2019
@zimmerle zimmerle mentioned this pull request Dec 11, 2019
Closed
pracj3am pushed a commit to cdn77/ModSecurity-nginx that referenced this pull request Nov 4, 2022
@zimmerle
CHANGES: Adds info on owasp-modsecurity#165
e9d5b8c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zimmerle zimmerle Awaiting requested review from zimmerle

@victorhora victorhora Awaiting requested review from victorhora

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Segmentation fault on a request with invalid HTTP method and error_page enabled
3 participants
@defanator @bugz8unny69 @zimmerle