Announcing the launch of a new set of rules that specifically focuses on the large community of Apache/Windows users (and the IIS users can use those rules too). Starting today a new rule set is now available if you are running a Windows web server (and I know there are a lot of you out there *grin*): http://www.gotroot.com/downloads/ftp/mod_security/windows-rules.conf (cache). Unlike the standard ruleset (which you can also run if you are running on Windows), this ruleset will specifically cover software that only runs on Windows, SQL attacks on MSSQL (which again, only runs on Windows) and other specific issues that effect the Windows community.

This is a new ruleset, so please let me know about false postivies/negatives and especially any attacks that are getting thru these rules. My goal is to get these rules protecting Windows servers as well as the UNIX community by the end of this month, so the more reports the better. Also, expect lots of additions to this ruleset as I go back thru all the known vulnerabilities on the Windows platform over the next few weeks.