I’ve been working even harder to make my ModSecurity ruleset as strong as possible without causing too many false positives. With the current git master I’m sure I can reject most of the spam sources before they hit at all… but.
But I’m not sure if I made it a bit too strong. So please, leave a comment on this post, with as many browsers as you usually use, and if it doesn’t work, drop me an email with your browser’s version (and if you can give me an IP address it’ll be easier to find it in the logs).
Thanks!