This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Infrastructure Rule IDs ... what is the impact when skipping these rules?

HI All,

I am hoping someone can help, I have been able to finally configure WAF, although there is a rule ID 981176, which states that it is a 'Required Infrastructure Rule. Disabling a required infrastructure rule can lead to attacks not being blocked by the Web Application Firewall.'

see here for a brief explanation ... https://community.sophos.com/kb/en-us/121446

My questions are;

1. where can I find out about these rules?

I have found that they are mentioned by Sophos Techs here on this Community, I have also found the website that created these rules (https://www.modsecurity.org/rules.html), which I have been unable to navigate to find what these actually mean.

2. what other attacks do they stop protecting against?

3. is it safe to allow this one rule?

any help is appreciated, and may help out some one else who is also has this conundrum.



This thread was automatically locked due to age.