Best unofficial Apache Server developers community |
Home >> discussions >> Apache mod_security
Apache mod_security Recent threads
| Threads | Replies | First post | Last post | |
|---|---|---|---|---|
|
Compiling modsecurity 2.6.5 for apache 2.0.x By: Ruiyuan Jiang Hi, I am trying to compile ModSecurity 2.6.5 for Apache 2.0.x on a
Redhat Enterprise v6.2, x86_64. In the configure step, I specified
--with-pcre=/usr which is Redhat's built-in pcre v7.8. When I compiled
Apache 2.0.x, I specified the same for…
|
0 | May 24 2012 17:47 |
May 24 2012 17:47 |
|
|
Forum reply being blocked by mod_security By: Retired1af I'm not getting very far with the software developers so I'm now
appealing to the experts here to find a solution to my problem. It
appears mod_security is triggering on the word nmap within a forum
post, preventing replies to the thread. Link…
|
2 | May 22 2012 07:19 |
May 22 2012 07:38 |
|
|
AuditConsole 0.4.6 released! By: Christian Bockermann Dear ModSecurity users, I am happy to announce the release of the
next version of AuditConsole, the free log-management tool for
ModSecurity. This version comes with a clean-up of the web-interface,
lots of bug-fixes, support for OpenID…
|
0 | May 22 2012 01:30 |
May 22 2012 01:30 |
|
|
error when creating rule for op "rx" By: daminto lee Hi, I am encountering some problem when trying to compile the latest
version mod_security-apache_2.6.5 onto my Ubuntu Server 12.04 LTS.
When I run "make CFLAGS=-DMSC_TEST test, I received the following
error message: ERROR: Failed to create rule…
|
0 | May 21 2012 20:28 |
May 21 2012 20:28 |
|
|
Persistent collections and errors in Apache error_log By: Luca Hello everyone. I'm getting a lot of error entries related to access
to DBM file used to store collections data. DBM file is huge, aroung
1GB, I think it never shrinks. Here a couple of examples: ModSecurity:
Failed deleting collection (name "ip",…
|
1 | May 21 2012 10:14 |
May 21 2012 10:27 |
|
|
New to Modsecurity: I Need to allow directory traversal to a single virtual host By: mrnicholsb Hello all, Im new to modsecurity and forgive me if this is a noobish
question. But I have a virtual host that I have a lot of iso files on
that I would like to have directory indexing allowed on just that
host. I have my .htaccess file as…
|
1 | May 19 2012 16:00 |
May 19 2012 16:28 |
|
|
Capturing Internal Server Errors By: Usman Hi, I have the following directive in my crs_10 file:
SecAuditLogRelevantStatus "^(?:5|0(?!04))" This logs 500 internal
server errors when they happen. I would like to set some attributes
like tag, msg, severity etc for the above when viewing…
|
2 | May 17 2012 06:34 |
May 17 2012 06:55 |
|
|
Own POST Rate Limit Rule not Working By: Thomas Berger Hi all, we have tried to write a ModSecurity rule to limit POST
Requests. But the limit does not work as expected. Here is the rule:
SecRule REQUEST_METHOD "^POST$"…
|
0 | May 11 2012 08:14 |
May 11 2012 08:14 |
|
|
2.6.5 Compile Question By: Dan Denton I'm compiling modsec 2.6.5 against Apache 2.4.2, and during a "make
CFLAGS=-DMSC_TEST test" I get the following: msc_test-modsecurity.o:
In function `modsecurity_init': modsecurity.c:(.text+0x240): undefined
reference to…
|
1 | May 10 2012 17:28 |
May 10 2012 17:39 |
|
|
ModSecurity starting, but not logging even with debug By: Mjs I have installed ModSecurity 2.6.5 on Apache httpd 2.0.52 and I see
it load in the error_log, but I get nothing from the ModSecurity
logs. I have set SecDebugLogLevel to 9. I have turned debug logs
on in apache as well, but am seeing…
|
4 | May 9 2012 14:22 |
May 10 2012 12:05 |
|
|
SecRule 981317 By: Canell, Stephen E (2240) In modsecurity_crs_41_sql_injection_attacks.conf, rule ID 981317
looks for the following: SecRule TX:SQLI_SELECT_STATEMENT_COUNT "@ge
3" "phase:2,t:none,block,id:'981317'ŠŠŠ. Which if the *_COUNT is
equal to or greater the 3 of the list of SQL…
|
0 | May 10 2012 11:41 |
May 10 2012 11:41 |
|
|
REQUEST_BODY has some XML By: Usman Waheed Hi, I am new to mod security and have an application that POSTS XML
data in the REQUEST_BODY. The REQUEST_HEADER Content-type is set to
application/x-www-form-urlencoded and NOT to text/xml. A sample of
my XML POST data in the REQUEST_BODY…
|
3 | May 9 2012 08:32 |
May 10 2012 07:04 |
|
|
Upcoming ModSecurity Training at BlackHat USA By: Josh Amishav-Zlatin Just another reminder that there are less then three weeks left to
sign up for the upcoming ModSecurity training at BlackHat Vegas this
summer at the regular rate…
|
0 | May 10 2012 06:15 |
May 10 2012 06:15 |
|
|
SecFilter rules By: solarflow99 Have the SecFilter directives become obsolete? The RHEL5 NSA
security guide mentions them but they don't see to exist anymore.
Thanks,
|
1 | May 6 2012 14:02 |
May 6 2012 14:24 |
|
|
Modsecurity super slow when SecRequestBodyAccess On By: Gil Vidals I have installed, modsecurity-crs_2.2.4.tar.gz, and an ASP sign HTML
form is being processed super slow whenever SecRequestBodyAccess is
On. If I set it to Off, the form processes very quickly. I turned on
debugging, and I see the usec are super…
|
5 | May 2 2012 21:27 |
May 5 2012 07:33 |
|
|
how to turn off rule checking for specific field By: chris derham All, So we have a user that has put a % symbol in their password.
This is tripping up mod_security when the user tries to login. The
relevant entry is Message: Pattern match
"\%((?!$|\W)|[0-9a-fA-F]{2}|u[0-9a-fA-F]{4})" at ARGS:j_password.
[file…
|
2 | May 4 2012 06:23 |
May 4 2012 07:53 |
|
|
mod_security not denying access By: Dennis Jacobfeuerborn Hi, I've just installed mod_security on a Centos 5 system and I'm
having trouble to actually get it to deny certain requests. I've
change the line: SecDefaultAction "phase:2,pass" to
SecDefaultAction "phase:2,deny" in…
|
1 | Apr 30 2012 13:52 |
Apr 30 2012 14:25 |
|
|
Re: mod_security not denying access By: Dennis Jacobfeuerborn This is a multi-part message in MIME format.On 04/30/2012 08:57 PM,
Ryan Barnett wrote: > > On 4/30/12 2:32 PM, "Dennis
Jacobfeuerborn" <denn### @conversis.de> wrote: > >>
Hi, >> I've just installed mod_security on a…
|
1 | Apr 30 2012 14:18 |
Apr 30 2012 14:23 |
|
|
Re: cpanel, mod_ruid2 and mod_sec By: Secmas I think I will be uninstalling mod_ruid2 until there is compatibility
with mod_security. "It is a flaw with mod_security in
conjunction with mod_ruid2 and not with cPanel itself. Some
components do not work with other components and, …
|
0 | Apr 20 2012 10:14 |
Apr 20 2012 10:14 |
|
|
cpanel, mod_ruid2 and mod_sec By: Sergio Hi all, I am having the following error in mod_sec log: Audit log:
Failed to lock global mutex: Permission denied Do you know what is
this error about? Cpanel forum saids that it is an incompatibility
issue among mod_ruid2 and mod_sec, have you…
|
0 | Apr 19 2012 19:12 |
Apr 19 2012 19:12 |