diff --git a/conf/modsecurity.conf b/conf/modsecurity.conf
index b6777ab..9e29d74 100644
--- a/conf/modsecurity.conf
+++ b/conf/modsecurity.conf
@@ -9,12 +9,8 @@ SecAuditLog /var/log/modsecurity/audit.log
 SecRequestBodyJsonParser On
 
 # sql injection
-SecRule ARGS|REQUEST_BODY "['\"].*--" \
-    "id:950001,phase:2,deny,status:403,msg:'SQL Injection: Escape or Comment',log,t:urlDecode,t:lowercase"
-
-# sql keyword
-SecRule ARGS "(?i)\b(select|insert|update|delete|drop|union|grant|alter|truncate)\b" \
-    "id:950002,phase:2,deny,status:403,msg:'SQL Injection: Keyword',log,t:urlDecode,t:lowercase"
+SecRule REQUEST_BODY "['\"].*--" \
+    "id:950001,phase:2,deny,status:403,msg:'SQL Injection: quote and comment',log"
 
 # xss / html injection
 SecRule REQUEST_URI|ARGS "(<.*>)|(%3C.*%3E)" \