-
-
Notifications
You must be signed in to change notification settings - Fork 229
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unsupported "accuracy" Action in SecRule Configuration #1104
Comments
We'll take a look, but I'm mostly impressed you are still running crs 2 👀 |
This is a copy/paste of the rule from Coraza Documentation, not my CRS setup. By the way, looking at this section of the Coraza source code, it seems some actions are not implemented, so this may be intended. Feel free to close the issue if that's the case. |
Hey @tigerwill90, thanks for raising this issue and for the detailed description, it is definitely on point!
I confirm that. We have the notion of the accuracy of a rule in the codebase (There is an
That being said, we have to take some action about it. We can entirely wipe off the notion of
I really think that the typo of missing
Did you spot any other action you were expecting to find that seems not implemented? Related to it, we have corazawaf/coraza.io#228 that would be great to be addressed, syncing also actions documentation directly from the code. We would have spotted that |
Hey @M4tteoP, thank you for your response. I'm glad that the issue is on point:
I double-checked all actions, and here are a few potential inconsistencies in the documentation that I can report: Not Implemented and Not Supported in ModSecurity v3.x
Other actions like Besides these few points, the only action in the ModSecurity v3.x Reference Manual that is not currently implemented seems to be |
TBI is To Be Implemented Sanitize sets should become a priority, but regarding prepend and append are a bit more complicated. Although we have full control of the request and response body, there are many implications that affects the integrations that could lead to breaking changes. For example, how do we update the content length? |
Description
Hi, I'm new to ModSecurity and Coraza, so please excuse me if this report is not entirely accurate.
I encountered an issue while using Coraza and testing some plugins. It appears that the
accuracy
action, despite being documented here, is not recognized as valid.Steps to reproduce
Configure the following rule:
The following error is returned:
When the accuracy action is removed, the rule compiles successfully.
Interestingly, when trying with the example rule below (from the documentation), it does not return the error:
However, it looks like the
ver:'CRS/2.2.4
is missing a'
at the end, so my guess is that the action is not intepreted.Additionally, I noticed that in the ModSecurity Reference Manual , the
ver
also end without the'
, so I'm not sure if it's something expected.Expected result
The
accuracy
action should be supported as documented.Actual result
The following error is encountered:
The text was updated successfully, but these errors were encountered: