Merge pull request #976 from dune73/more-commenting-for-910110

Commenting out the rest of 910110

Author: emphazer

rules/REQUEST-910-IP-REPUTATION.conf

@@ -90,22 +90,22 @@ SecRule TX:HIGH_RISK_COUNTRY_CODES "!@rx ^$" \
 # from the SpiderLabs web honeypot systems (last 48 hours).
 #
 #SecRule TX:REAL_IP "@ipMatchFromFile ip_blacklist.data" \
-    "id:910110,\
-    phase:2,\
-    block,\
-    t:none,\
-    msg:'Client IP in Trustwave SpiderLabs IP Reputation Blacklist.',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    severity:'CRITICAL',\
-    setvar:'tx.msg=%{rule.msg}',\
-    setvar:'tx.anomaly_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.%{rule.id}-AUTOMATION/MALICIOUS-%{matched_var_name}=%{matched_var}',\
-    setvar:'ip.reput_block_flag=1',\
-    setvar:'ip.reput_block_reason=%{rule.msg}',\
-    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
+#    "id:910110,\
+#    phase:2,\
+#    block,\
+#    t:none,\
+#    msg:'Client IP in Trustwave SpiderLabs IP Reputation Blacklist.',\
+#    tag:'application-multi',\
+#    tag:'language-multi',\
+#    tag:'platform-multi',\
+#    tag:'attack-reputation-ip',\
+#    severity:'CRITICAL',\
+#    setvar:'tx.msg=%{rule.msg}',\
+#    setvar:'tx.anomaly_score=+%{tx.critical_anomaly_score}',\
+#    setvar:'tx.%{rule.id}-AUTOMATION/MALICIOUS-%{matched_var_name}=%{matched_var}',\
+#    setvar:'ip.reput_block_flag=1',\
+#    setvar:'ip.reput_block_reason=%{rule.msg}',\
+#    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
 
 
 #