Projects/OWASP ModSecurity Core Rule Set Project/Releases/ModSecurity 2.0.8

- Updated the PHPIDS filters - Updated the SQL Injection filters to detect boolean attacks (1<2, foo == bar, etc..) - Updated the SQL Injection filters to account for different quotes - Added UTF-8 encoding validation support to the modsecurity_crs_10_config.conf file - Added Rule ID 950109 to detect multiple URL encodings - Added two experimental rules to detect anomalous use of special characters

Bug Fixes: - Fixed Encoding Detection RegEx (950107 and 950108) - Fixed rules-updater.pl script to better handle whitespace

 https://www.modsecurity.org/tracker/browse/MODSEC-167

- Fixed missing pass action bug in modsecurity_crs_21_protocol_anomalies.conf

 https://www.modsecurity.org/tracker/browse/CORERULES-55

- Fixed the anomaly scoring in the modsecurity_crs_41_phpids_filters.conf file

 https://www.modsecurity.org/tracker/browse/CORERULES-54

- Updated XSS rule id 958001 to improve the .cookie regex to reduce false postives

 https://www.modsecurity.org/tracker/browse/CORERULES-29

• Ryan Barnett @

• ModSecurity on SourceForge
• Bug Tracker
• Installation
• Documentation
• PPT Presentation
• PDF Withepaper

• Contact Ryan Barnett @ to contribute to this project

• Contact Ryan Barnett @ to review or sponsor this project

• Contact the GPC to report a problem or concern about this release info or to update information.