Add another common modsec false positive

b1537660 · ale · 55aa79f3 · b1537660
Commit b1537660 authored 4 years ago by ale
--- a/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
+++ b/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
@@ -16,10 +16,13 @@ SecRuleRemoveById 950130
 # XSS rules that have too many false positives.
 SecRuleRemoveById 941160
 SecRuleRemoveById 941180
-SecRuleRemoveByID 953120

 # ModSec Rule Exclusion: 920273 : Invalid character in request (outside of very strict set)
 # ModSec Rule Exclusion: 942432 : Restricted SQL Character Anomaly Detection (args): 
 # number of special characters exceeded (2) (severity:  NONE/UNKOWN)
 SecRuleRemoveById 920273
 SecRuleRemoveById 942432
+
+# Presence of PHP code in the output
+SecRuleRemoveByID 953110
+SecRuleRemoveByID 953120