|
Mod Security on debian
|
| Author |
Message |
hxbro
Junior Member
Posts: 24
Group: Registered
Joined: Feb 2007
Status:
Offline
Reputation: 0
|
RE: Mod Security on debian
You'll have to do a lot of tweaking with the gotroot rules, you'll need to monitor daily your mod security log to see what's been blocked, and tweak the rules to make them work.
|
|
| 04-22-2008 01:57 AM |
|
 |
hYemac
Posts: 1
Group: Registered
Joined: May 2008
Status:
Offline
Reputation: 0
|
RE: Mod Security on debian
having issues .. system debian..
checking for strstr... yes
checking for strtol... yes
configure: looking for Apache module support via DSO through APXS
configure: found apxs at /usr/bin/apxs
configure: checking httpd version
configure: error: apache is too old
./configure: line 5051: exit: mmn: numeric argument required
./configure: line 5051: exit: mmn: numeric argument required
does are the inputs on
./configure && make && make install
thank you..
|
|
| 05-03-2008 11:08 AM |
|
|
hxbro
Junior Member
Posts: 24
Group: Registered
Joined: Feb 2007
Status:
Offline
Reputation: 0
|
RE: Mod Security on debian
apache is out of date, you should be running 2.x at least I think, preferably 2.2.x
What version of debian and apache are you running?
Do you update your system regularly using :
apt-get update && apt-get upgrade
?
|
|
| 05-03-2008 11:02 PM |
|
|
Quemeros
Junior Member
Posts: 25
Group: Registered
Joined: Nov 2007
Status:
Offline
Reputation: 0
|
RE: Mod Security on debian
I finish install mod_security but... now Apache reports that it are: "Apache/2.2.0 (Fedora) mod_fastcgi/2.4.2"... but the server si (like my signature say) a Debian Etch 2.2.4 :S (last remember)... it is normal :S?
OS: Debian Etch r3.0 Amd64
IspCP: RC4 (AWStats: Static) + AMaVis + SSL
This post was last modified: 05-08-2008 10:47 AM by Quemeros.
|
|
| 05-08-2008 10:45 AM |
|
|
mafia
Posts: 4
Group: Registered
Joined: May 2008
Status:
Offline
Reputation: 0
|
RE: Mod Security on debian
bonjour
je viens install le mod security
voila erreur
ebian:/tmp# /etc/init.d/apache2 restart
Forcing reload of web server (apache2)...apache2: Syntax error on line 195 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/conf.d/mod-security2.conf: Include takes one argument, Name of the config file to be included
failed!
debian:/tmp#
/etc/apache2/conf.d/mod-security2.conf
include /etc/modsecurity2 /*. conf
merci
|
|
| 05-10-2008 04:09 AM |
|
|
Zothos
Member
Posts: 484
Group: Dev Team
Joined: Feb 2007
Status:
Offline
Reputation: 5
|
RE: Mod Security on debian
include /etc/modsecurity2 /*. conf -> include /etc/modsecurity2/*. conf
Real programmers don't comment their code - it was hard to write, it should be hard to understand
OS : Gentoo 32bit Stage1
ispCP Version : RC4
Mods : Dovecot | Pure-ftpd
|
|
| 05-10-2008 04:52 AM |
|
|
mafia
Posts: 4
Group: Registered
Joined: May 2008
Status:
Offline
Reputation: 0
|
RE: Mod Security on debian
je fait quoi j ai pas compris merci
|
|
| 05-10-2008 06:25 PM |
|
|
greatman
Junior Member
Posts: 17
Group: Registered
Joined: Apr 2008
Status:
Offline
Reputation: 0
|
RE: Mod Security on debian
ton include est mal fait il doit etre comme sa: include /etc/modsecurity/*.conf
P.S: T'aura plus de chance dans le forum fr que dans le english 
|
|
| Yesterday 02:15 AM |
|
|
fulltilt
Member
Posts: 364
Group: Registered
Joined: Apr 2007
Status:
Offline
Reputation: 3
|
RE: Mod Security on debian
i need to exclude a rule in useragents.conf for a cron script:
#Blocks scripts
SecRule HTTP_User-Agent lwp
but this rule have no ID - how can i set this in exclude.conf ...
Can i use "lwp" instead of a ID Number here?
#cron
<LocationMatch "/cron_jobs/main_cron.php">
SecRuleRemoveById lwp
</LocationMatch>
Regards
Ralph
OS : Debian 4.0 Etch 32bit
ispCP Version: trunk-20080203
Update von VHCS2 latest
Activated : AWStats static
Mods : none
|
|
| Yesterday 08:41 PM |
|
|
|
|
Search
Member List
Calendar
Help
