I use mod_security to return a custom error code 6xx on some requests, so I can later work them with crowdsec actions.
However any request with non conventional error codes is not logged at all in the webserver access_log.
For example if I have a rule in mod_security that uses deny:403 I get it in the logs. If I change the return code to something like 6xx it doesn't.
Is this expected behaviour or a bug? Maybe a config flag somewhere that can be changed?
However any request with non conventional error codes is not logged at all in the webserver access_log.
For example if I have a rule in mod_security that uses deny:403 I get it in the logs. If I change the return code to something like 6xx it doesn't.
Is this expected behaviour or a bug? Maybe a config flag somewhere that can be changed?