Hello Friends !
i know there was bug with waf reporting on dashboard but it was fix
still i am see that problem and there is no reporting for
Reporting >> Web Application Firewall
i use some scripts to test
getting this kind of message
2010:06:03-08:13:44 acenn reverseproxy: [Thu Jun 03 08:13:44 2010] [error] [client 192.168.2.102] ModSecurity: Audit log: Failed to create file: /var/log/audit/20100603/20100603-0813/20100603-081344-TAcW4D0RwasAACYsDZUAAAAH (No such file or directory) [hostname "mydomain "] [uri "/images/a50.gif"] [unique_id "TAcW4D0RwasAACYsDZUAAAAH"]
2010:06:03-08:26:57 acenn reverseproxy: [Thu Jun 03 08:26:57 2010] [error] [client 192.168.2.102] ModSecurity: Warning. Operator LT matched 20 at TX:inbound_anomaly_score. [file "/usr/apache/conf/waf/REF_xKTvtEIXmU.rules"] [line "927"] [msg "Inbound Anomaly Score (Total Inbound Score: 10, SQLi=, XSS=): 900023-Detects JavaScript location/document property access and window access obfuscation"] [hostname "mydomainm"] [uri "/news.asp"] [unique_id "TAcZ@T0RwasAACZIFHoAAABI"]
edit/update :::::
is it looking for
acenn:/var/sec/chroot-reverseproxy/var/log/audit/20100511/20100511-0936 # pwd
/var/sec/chroot-reverseproxy/var/log/audit/20100511/20100511-0936
thanks