Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
litespeed_wiki:config:mod_security-compatibility [2015/11/12 14:39] Michael Alegre |
litespeed_wiki:config:mod_security-compatibility [2017/07/25 13:32] (current) Eric Leu [Supported Features List (Not Comprehensive)] |
||
|---|---|---|---|
| Line 6: | Line 6: | ||
| ===== Supported Features List (Not Comprehensive)===== | ===== Supported Features List (Not Comprehensive)===== | ||
| - | * **@rbl** - real time block list. | + | * **@rbl** - real time block list. (since 5.1) |
| - | * **@fileinspect** - scan attached files. | + | * **@fileinspect** - scan attached files. (since 5.1) |
| * Scan request header/body. | * Scan request header/body. | ||
| * Scan response header. | * Scan response header. | ||
| + | * Audit logging | ||
| + | * LSWS currently only supports the serial mode for audit logging. Since LiteSpeed is event driven, not like Apache that can have multiple processes and could change UID. | ||
| ===== Not Yet Support Features ===== | ===== Not Yet Support Features ===== | ||
| - | * scan response body. | + | * Scan response body. |
| - | * PDF functions | + | * PDF functions. |
| - | * lua | + | * lua. |
| - | * parsing XML | + | * Parsing XML. |
| - | ==== Reasons/Concerns not support them ==== | + | ===== Not Yet Support syntax ===== |
| + | * SecRemoteRules | ||
| + | ===== Reasons/Concerns not support them ===== | ||
| * The feature is not often used. | * The feature is not often used. | ||
| * The feature may slow down LiteSpeed considerably due to our single-thread event driven architecture. | * The feature may slow down LiteSpeed considerably due to our single-thread event driven architecture. | ||
| - | * Static file rules are skipped as they are unlikely to cause any real security issues. | + | * Requests to static files bypass mod_security scanning as they are unlikely to cause any real security issues. |