Add ModSec exclusion for wp2pgpmail

592fdf48 · ale · 1ce6bf72 · 592fdf48
Commit 592fdf48 authored 4 years ago by ale
--- a/conf/modsecurity/crs/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
+++ b/conf/modsecurity/crs/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
@@ -43,3 +43,14 @@ SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
    ctl:ruleRemoveTargetByTag=CRS;ARGS:widget-event_list_widget[2][title],\
    ctl:ruleRemoveTargetByTag=CRS;ARGS:widget-event_list_widget[2][location_length]"

+# Filter out certain args (all URIs) for the pgp email plugin.
+SecRule REQUEST_URI "@beginsWith /" \
+    "id:1005,\
+    phase:2,\
+    pass,\
+    nolog,\
+    ctl:ruleRemoveTargetByTag=attack-sqli;ARGS:message_from_name,\
+    ctl:ruleRemoveTargetByTag=attack-sqli;ARGS:message_from_mail,\
+    ctl:ruleRemoveTargetByTag=attack-sqli;ARGS:message_body,\
+    ctl:ruleRemoveTargetByTag=attack-sqli;ARGS:text"
+