-
Notifications
You must be signed in to change notification settings - Fork 6
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #4 from theseion/update-mechanism-to-disable-plugin
Use new mechanism to disable plugin
- Loading branch information
Showing
3 changed files
with
48 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,43 @@ | ||
| # ------------------------------------------------------------------------ | ||
| # OWASP ModSecurity Core Rule Set Plugin | ||
| # Copyright (c) 2021-2022 Core Rule Set project. All rights reserved. | ||
| # | ||
| # The OWASP ModSecurity Core Rule Set plugins are distributed under | ||
| # Apache Software License (ASL) version 2 | ||
| # Please see the enclosed LICENSE file for full details. | ||
| # ------------------------------------------------------------------------ | ||
|
|
||
| # OWASP CRS Plugin | ||
| # Plugin name: phpmyadmin-rule-exclusions | ||
| # Plugin description: | ||
| # Rule ID block base: 9,513,000 - 9,513,999 | ||
| # Plugin version: 1.0.0 | ||
|
|
||
| # Documentation can be found here: | ||
| # https://github.com/coreruleset/phpmyadmin-rule-exclusions-plugin | ||
|
|
||
| # Generic rule to disable the plugin | ||
| # | ||
| # Plugins are enabled by default. | ||
| # | ||
| # They become active by placing them in the plugin folder. It is possible to | ||
| # control plugin activation via setting a variable. This can be done in the | ||
| # plugin config file here. | ||
| # | ||
| # The predefined variable name is meant to be "<plugin name>-plugin_enabled". | ||
| # For the phpmyadmin-rule-exclusions-plugin, this means it can be disabled by setting | ||
| # tx.phpmyadmin-rule-exclusions-plugin_enabled=0. | ||
| # | ||
| # Note that a global setting of this variable overrides the setting here. | ||
| # That means the "enabled" variable is only set by this rule if it has not | ||
| # been set before. | ||
| # | ||
| # Feel free to set the variable unconditionally here by replacing the | ||
| # SecRule line with an unconditional SecAction statement. | ||
| # | ||
| #SecRule &TX:phpmyadmin-rule-exclusions-plugin_enabled "@eq 0" \ | ||
| # "id:9513010,\ | ||
| # phase:1,\ | ||
| # pass,\ | ||
| # nolog,\ | ||
| # setvar:'tx.phpmyadmin-rule-exclusions-plugin_enabled=0'" |