Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft: WAF #915

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Draft: WAF #915

wants to merge 1 commit into from

Conversation

ennetech
Copy link

@ennetech ennetech commented Nov 20, 2022

Closes !911

  • i have not updated the vendor to keep the PR light (go mod tidy && go mod vendor)
  • there is a setup.sh script in waf folder to download the CRS (one rule is disabled) (cd waf && bash setup.sh)
  • to enable the WAF edit coraza.conf line 7 from SecRuleEngine DetectionOnly to SecRuleEngine On

at the moment v2 version of coraza is being used as v3 is still in alpha

curl http://localhost:9999/?a=<script>alert(1)</script> will trigger the waf

@CLAassistant
Copy link

CLAassistant commented Nov 20, 2022

CLA assistant check
All committers have signed the CLA.

@ennetech ennetech mentioned this pull request Nov 20, 2022
@nathanejohnson nathanejohnson self-requested a review November 22, 2022 01:41
@nathanejohnson
Copy link
Member

I'm halfway tempted to remove the vendor directory and just rely on go modules anyway. It will probably be later in the week before I'm able to look at this in earnest, but thanks again for this!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

WAF integration
3 participants