What OWASP ModSecurity Core Rule Set Group contains the filter for "Version Control - Information Disclosure"?

I am having some API requests with indian language text hitting the OWASP filter.

I cannot seem to find the right rule set group to disable this check. The expected ones that are prone to false positives I have disabled to no effect.

Is there a way to find out which rule set group the filter “Version Control - Information Disclosure” belongs to?

I answered my own question. In the firewall events view, download the JSON details for the event.

in the JSON there is a list of IDs associated with the rules that triggered. You can then go into “Advanced” section of the managed rules, and search for that ID. Then you can disable the specific problem rule(s).

1 Like

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.