Web Application Security: User-created/Custom Rules
For those saavy enough to create their own rules, it should be possible to craft and deploy custom ones.
As you submitted two requests (one for custom rules and one for existing rule management) in a single feature, I've reworded it slightly so that others might find this request and choose to vote for it.
Clayton Dillard commented
No comment from Astaro since July 13, 2011 on this, while a lot of others are asking for these and other enhancements to the WAF. Astaro/Sophos is on the right track by enabling WAF and now we need enhancements to make it useful for those of us who operate highly complex web applications