Outdated whoami in docker-compose
kraoc opened this issue · comments
In your compose, reference to Whoami is outdated since 3 years :p
Please update to: traefik/whoami
I'm also testing these settings to modsecurity-crs to help speedup things:
environment:
PARANOIA: 1
ANOMALY_INBOUND: 10
ANOMALY_OUTBOUND: 5
BACKEND: http://whoami
LOGLEVEL: error
MODSEC_REQ_BODY_LIMIT: 1073741824
MODSEC_REQ_BODY_NOFILES_LIMIT: 1073741824
MODSEC_AUDIT_LOG_FORMAT: "Native"
MODSEC_AUDIT_LOG_TYPE: "Concurrent"
MODSEC_AUDIT_STORAGE: /audit
Notice that MODSEC_REQ_BODY_LIMIT + MODSEC_REQ_BODY_NOFILES_LIMIT are to help handling large bodies...
Usefull for file upload or... using a waf for a docker registry...