I am having problems with the Request Filter not working. I have installed various rules and the particular one I am testing is - Code: # WEB-ATTACKS /etc/passwd access SecFilter "/etc/passwd" deny,log,status:406 The request filter is enabled along with scan request body and log level set to 6. When running the file that should trigger this, it doesn't. Put the rule into ModSec however and it denies instantly. Any ideas why this is or should I say isn't happening?