HEX
Server: Apache/2
System: Linux nexus-01 4.18.0-553.120.1.el8_10.x86_64 #1 SMP Mon Apr 20 18:04:27 EDT 2026 x86_64
User: aglcoke (1118)
PHP: 8.2.31
Disabled: mail,exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
$ pwd: /usr/local/cwaf/rules/
Upload Files
File: //usr/local/cwaf/rules/13_HTTP_Request.conf
# ---------------------------------------------------------------
# Comodo ModSecurity Rules
# Copyright (C) 2022 Comodo Security solutions All rights reserved.
#
# The COMODO SECURITY SOLUTIONS Mod Security Rule Set is distributed under
# THE COMODO SECURITY SOLUTIONS END USER LICENSE AGREEMENT,
# Please see the enclosed LICENCE file for full details.
# ---------------------------------------------------------------
# This is a FILE CONTAINING CHANGED or MODIFIED RULES FROM THE:
# OWASP ModSecurity Core Rule Set (CRS)
# ---------------------------------------------------------------

SecRule &TX:ARG_NAME_LENGTH "@eq 1" \
	"id:210600,chain,msg:'COMODO WAF: Argument name too long||%{tx.domain}|%{tx.mode}|4',phase:2,block,t:none,rev:1,severity:4,tag:'CWAF',tag:'Request'"
SecRule ARGS_NAMES "@gt %{tx.arg_name_length}" \
	"setvar:'tx.points=+%{tx.points_limit1}',t:none,t:length"

SecRule &TX:ARG_LENGTH "@eq 1" \
	"id:210610,chain,msg:'COMODO WAF: Argument value too long||%{tx.domain}|%{tx.mode}|4',phase:2,block,t:none,rev:1,severity:4,tag:'CWAF',tag:'Request'"
SecRule ARGS "@gt %{tx.arg_length}" \
	"setvar:'tx.points=+%{tx.points_limit1}',t:none,t:length"

SecRule &TX:MAX_NUM_ARGS "@eq 1" \
	"id:210620,chain,msg:'COMODO WAF: Too many arguments in request||%{tx.domain}|%{tx.mode}|4',phase:2,block,t:none,rev:1,severity:4,tag:'CWAF',tag:'Request'"
SecRule &ARGS "@gt %{tx.max_num_args}" \
	"setvar:'tx.points=+%{tx.points_limit1}',t:none"

SecRule &TX:TOTAL_ARG_LENGTH "@eq 1" \
	"id:210630,chain,msg:'COMODO WAF: Total arguments size exceeded||%{tx.domain}|%{tx.mode}|4',phase:2,block,t:none,rev:1,severity:4,tag:'CWAF',tag:'Request'"
SecRule ARGS_COMBINED_SIZE "@gt %{tx.total_arg_length}" \
	"setvar:'tx.points=+%{tx.points_limit1}',t:none"

SecRule &TX:MAX_FILE_SIZE "@eq 1" \
	"id:210640,chain,msg:'COMODO WAF: Uploaded file size too large||%{tx.domain}|%{tx.mode}|4',phase:1,block,t:none,rev:1,severity:4,tag:'CWAF',tag:'Request'"
SecRule REQUEST_HEADERS:Content-Type "@beginsWith multipart/form-data" \
	"chain"
SecRule REQUEST_HEADERS:Content-Length "@gt %{tx.max_file_size}" \
	"setvar:'tx.points=+%{tx.points_limit1}',t:none"

SecRule &TX:COMBINED_FILE_SIZES "@eq 1" \
	"id:210650,chain,msg:'COMODO WAF: Total uploaded files size too large||%{tx.domain}|%{tx.mode}|4',phase:2,block,t:none,rev:1,severity:4,tag:'CWAF',tag:'Request'"
SecRule FILES_COMBINED_SIZE "@gt %{tx.combined_file_sizes}" \
	"setvar:'tx.points=+%{tx.points_limit1}',t:none"
@ Telegram