5

What do the audit log records for ModSecurity actually mean?

view full story
linux-howto

http://serverfault.com – We have ModSecurity setup to log to modsec_audit.log for Apache2. Today we have had 2259 entries created in this log with a referrer of: Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Do these entries mean that bingbot has been stopped from crawling our website? The H record for this log entry states (there is no reference to severity or tag: Message: Rule execution error - PCRE limits exceeded (-8): (null). The HTTP result code for this entry is 200 OK. I am trying to get an understanding of what the records in these logs means so I can create some form of re (HowTos)