Merge pull request #805 from fgsch/fgsch/issue_800

csanders-git · web-flow · commit f58ea8d21f25 · 2017-06-12T21:44:35.000-04:00
Add missing msg
diff --git a/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf b/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
@@ -1484,8 +1484,8 @@ SecRule REQUEST_HEADERS|!REQUEST_HEADERS:User-Agent|!REQUEST_HEADERS:Referer|!RE
 # a bit different though, as \t is a natural escape for the TAB character,
 # so we will avoid this (and \n, \r, etc.).
 #
-# This rule aims to detect non-necessary, abnormal esacpes. You could say it is
-# a nice # way to forbid the backslash character where it is not needed.
+# This rule aims to detect non-necessary, abnormal escapes. You could say it is
+# a nice way to forbid the backslash character where it is not needed.
 #
 # This is a new rule at paranoia level 4. We expect quite a few false positives
 # for this rule and we will later evaluate if the rule makes any sense at all.
@@ -1511,6 +1511,7 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "(?<!\Q\\\E)\Q\\\E[cdeghijkl
    ver:'OWASP_CRS/3.0.0',\
    block,\
    log,\
+   msg:'Abnormal character escapes in request',\
    severity:'CRITICAL',\
    capture,\
    tag:'application-multi',\
