Code Monkey home page Code Monkey logo

Comments (3)

longwuyuan avatar longwuyuan commented on July 17, 2024 1

oh, this plugin thing is not 100% info. As in the impact on controller and managing expectations related to it.

cc @tao12345666333 seek comments because there is a PR now to bump OWASP which introduces previsously non0-existing feature of plugins for rulesets

from ingress-nginx.

k8s-ci-robot avatar k8s-ci-robot commented on July 17, 2024

This issue is currently awaiting triage.

If Ingress contributors determines this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

from ingress-nginx.

jessebot avatar jessebot commented on July 17, 2024

It may also be worth noting that 4.x introduces the concept of plugins to the CRS:

Plugins are not part of the CRS 3.3.x release line. They are released officially with CRS 4.0.

Perhaps in a future PR, it makes sense to take the plugin configs as ConfigMaps or Secrets to be templated out as volumeMounts that are present in /etc/nginx/owasp-modsecurity-crs/crs/plugins/. This is mostly useful when a user is running something with a large (or small but very serious) attack vector such as Nextcloud, which OWASP provides this plugin for: https://github.com/coreruleset/nextcloud-rule-exclusions-plugin

Getting the CRS updated to 4.4.0 is my first priority though.

from ingress-nginx.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.