You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
thanks for inform us - it seems meanwhile you've sent a PR, and found an existing one. Perhaps that will solve this issue too, so if you think that works, please close this.
Description
The
REQUEST-920-PROTOCOL-ENFORCEMENT.conf
ruleset does not appear to be aware ofHTTP/3
.How to reproduce the misbehavior (-> curl call)
I simply deployed https://github.com/corazawaf/coraza-caddy with a Caddy server of mine and the first request was immediately blocked as Caddy support HTTP/3 out of the box, using the suggested configuration from: https://github.com/corazawaf/coraza-caddy#using-owasp-core-ruleset
Logs
Your Environment
master
/2.7.0-beta2
Confirmation
[X] I have removed any personal data (email addresses, IP addresses,
passwords, domain names) from any logs posted.
The text was updated successfully, but these errors were encountered: