From a67c85857ba40f6fc6ed06ad7c0d20384ed7294d Mon Sep 17 00:00:00 2001
From: "srvproxy001.itguys.com.br" <srvproxy001@itguys.com.br>
Date: Sat, 27 Sep 2025 14:27:10 -0300
Subject: [PATCH] =?UTF-8?q?[Auto-Sync]=20Atualiza=C3=A7=C3=A3o=20das=20con?=
 =?UTF-8?q?figura=C3=A7=C3=B5es=20em=20srvproxy001.itguys.com.br=20-=20202?=
 =?UTF-8?q?5-09-27=2014:27:10?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 nginx/modsecurity_includes.conf | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/nginx/modsecurity_includes.conf b/nginx/modsecurity_includes.conf
index 505c992..be82dda 100644
--- a/nginx/modsecurity_includes.conf
+++ b/nginx/modsecurity_includes.conf
@@ -1,2 +1,11 @@
-include modsecurity.conf
-#include /usr/share/modsecurity-crs/owasp-crs.load
+# 1. Carrega suas configurações personalizadas do ModSecurity
+#    (Define o motor, limites, diretórios, etc.)
+Include /etc/nginx/modsecurity.conf
+
+# 2. Carrega o conjunto de regras completo do OWASP CRS
+#    (Regras de proteção contra SQLi, XSS, etc.)
+Include /usr/share/modsecurity-crs/owasp-crs.load
+
+# 3. Carrega suas exceções globais (Whitelist)
+#    (Deve ser o ÚLTIMO a ser carregado para sobrescrever as regras)
+Include /etc/nginx/modsec/global-exceptions.conf