|
|
@@ -37,7 +37,12 @@ module "elb" {
|
|
|
"AWSManagedRulesUnixRuleSet" = false # Irrelevant, module is disabled
|
|
|
}
|
|
|
|
|
|
- excluded_rules_AWSManagedRulesCommonRuleSet = ["SizeRestrictions_BODY"]
|
|
|
+ excluded_rules_AWSManagedRulesCommonRuleSet = [
|
|
|
+ "SizeRestrictions_BODY", # SAML auth
|
|
|
+ "RestrictedExtensions_URIPATH", # Lots of prohibited extensions, e.g. props.conf
|
|
|
+ "RestrictedExtensions_QueryArguments", # Again, prohibited extensions don't work here
|
|
|
+
|
|
|
+ ]
|
|
|
#excluded_rules_AWSManagedRulesAmazonIpReputationList = []
|
|
|
#excluded_rules_AWSManagedRulesKnownBadInputsRuleSet = []
|
|
|
#excluded_rules_AWSManagedRulesSQLiRuleSet = [] # Module disabled
|
Frederick Damstra