79570925

Date: 2025-04-12 20:47:16
Score: 10.5 🚩
Natty: 6.5
Report link

I'm having a similar problem.

Running ModSecurity 2.9.8. OWASP CRS 4.13.0 with Apache 2.4.63 on AlmaLinux 9.5

Had the rules as:
SecRule REQUEST_FILENAME "@endsWith .ttf" "id:200000003,phase:1,nolog,allow"

But still getting modsec blocks, going to try:
SecRule REQUEST_URI ".ttf" "id:200000004,phase:1,nolog,t:urlDecode,t:lowercase,t:normalizePath,ctl:ruleRemoveById=920440"

Any other suggestions?
Thanks

Reasons:
  • Blacklisted phrase (0.5): Thanks
  • Blacklisted phrase (1): I'm having a similar problem
  • RegEx Blacklisted phrase (2): Any other suggestions?
  • No code block (0.5):
  • Me too answer (2.5): I'm having a similar problem
  • Ends in question mark (2):
  • Looks like a comment (1):
  • Low reputation (1):
Posted by: FL538