|
Hi, I try to use mod_security but it doesn t filter anything ! My vhostconf : <VirtualHost *:80> ServerSignature Off ServerName cache-ext ErrorLog logs/cache-ext_error.log CustomLog logs/cache-ext_access.log combined <IfModule mod_proxy.c> <LocationMatch "^[^/]"> Deny from all </LocationMatch> <IfModule mod_rewrite.c> RewriteEngine On # RewriteCond %{REQUEST_URI} ^/img=(.+)$ RewriteRule ^/img=(.+)$ $1 [L,P] RewriteLog /var/log/RewriteLog.log RewriteRule ^[/img=](.+)$ - [F] </IfModule> AllowEncodedSlashes on ProxyRequests On ProxyVia On <IfModule mod_disk_cache.c> CacheEnable disk / CacheRoot "/var/cache/mod_proxy" </IfModule> <IfModule mod_mem_cache.c> CacheEnable mem / MCacheMaxObjectSize 1024000 MCacheSize 102400 </IfModule> <proxy *> # deny from all </proxy> <proxymatch ^/img=(.+)$> allow from all </proxymatch> <IfModule mod_security.c> SecFilterEngine On SecFilterDefaultAction
"deny,log,status:403" SecFilterDebugLevel 9 SecFilterSelective macbidouille.com SecAuditLog logs/audit_log </IfModule> </IfModule> </VirtualHost> It should respond me an 403 error for every URL with a macbidouille.com
in the URL. Any ideas? |
|