Highest Voted 'mod-security' Questions - Server Fault Stack Exchange

0

votes

1 answer

ModSecurity not enabled

I have similar problem like question How do I enable mod_security in Ubuntu 10.04? , but i do not have the "minimal" file with me which i can replace and make it work. My configuration is also different. here is my /etc/modsecurity/modsecurity.conf …

apache-2.2 mod-security

asked Aug 06 '12 at 14:26

Farhan

4,269
11
49
80

0

votes

1 answer

Mod Security log monitoring

Is there a web based log management utility present for Mod Security? As parsing the logs of Mod Security is a big headache. I can only see traditional log monitoring systems but not any, which is intended for mod-security logs analysing.

apache-2.2 logging mod-security

asked May 01 '12 at 18:49

Farhan

4,269
11
49
80

0

votes

2 answers

block php file access (modsecurity)

How can I block all access to a PHP file? File name is similar to sm6######.php where #### can be any random digit. How can I do it using mod_sec?

apache-2.2 mod-security

asked Mar 23 '12 at 06:06

Kashif

493
9
20

0

votes

1 answer

installing mod_security causing apache service start to fail

I installed mod security using this tutorial http://www.linuxmaza.... . After installing I got the error described and followed the steps to solve it. The only thing I did differently was updating apache from the repo rather than uninstalling…

apache-2.2 mod-security

asked Feb 20 '12 at 17:17

Frank Astin

169
1
1
10

0

votes

2 answers

How to use RegEx for mod_security

I have a directory/site set-up like this on my Apache/2.2.19 (Win32) Server using mod_security + core ruleset/2.2.1 /website1/login.php /website2/login.php /website3/login.php /websiteN/login.php In my modsecurity_crs_10_config.conf I…

apache-2.2 url regex mod-security brute-force-attacks

asked Sep 07 '11 at 14:20

PadraigD

141
1
8

0

votes

2 answers

Apache2 mod_security simple default deny rules for specific directory

How to configure the simplest useful default-deny rule set for mod_security? I want to configure mod_security to allow only very specific queries to single directory: In short: I use Apache as a reverse proxy for directory /web_app/, in this…

apache-2.2 mod-security security web-application-firewall

asked Aug 21 '11 at 13:27

Hubert Kario

6,361
6
36
65

0

votes

1 answer

sources.list entry for mod_security testing release?

I have a debian "squeeze" installation, but the mod_security delivered with this release is quite old. So I'm thinking of adding an additional line to my sources.list to get the "wheezy" version (wheezy = the version after the current version…

debian mod-security debian-squeeze

asked Aug 19 '11 at 12:49

powtac

639
2
6
19

0

votes

1 answer

HAProxy health check is logged as TCP_MISS/000 in Squid

We have a HAProxy front-end, load balancing a layer of Squid servers, which handles data from an Apache ModSecurity layer, and which ultimately serves up data from IIS cluster. Each Squid server is mapped to a ModSecurity server in a 1:1…

squid haproxy mod-security

asked Jun 15 '11 at 18:00

Matt Beckman

1,502
18
33

0

votes

1 answer

What is this mod_security rule trying to prevent?

Today my IP was blocked by my server. I was told it was because of a mod_security rule that got triggered. I'm told that the regex that got triggered was ^((?:(?:POS|GE)T|OPTIONS|HEAD)) I don't know much about mod_security and was told If the…

regex mod-security

asked Feb 14 '11 at 13:06

Mike Grace

197
1
6

0

votes

2 answers

mod_security on an OWA front end

When using mod_security (installed from EPEL) with apache 2 on a centos box, sometimes users are unable to send messages - im having trouble tracing the rule back, the only place i get to is 'inbound anomaly score too high' anyone know what i should…

reverse-proxy outlook-web-app mod-security

asked Nov 17 '10 at 19:46

Devnull

951
1
7
23

0

votes

2 answers

Web Application Firewall: alternatives to mod_security

mod_security seems to be no longer on Debian repositories. The installation seems quite complicated. The only one I could find is Zorp, which seems even more complicated. Hence I'd like to ask for up to date mod_security howto's or alternative…

apache-2.2 mod-security application-firewall

asked Oct 07 '10 at 17:15

MrG

289
3
10

0

votes

2 answers

How to secure Cpanel/WHM from malacious uploads

Recently my site's index.php file was replaced with some malicious javascript code. I really don't know how it was added to the page. Today when I tried to download the file via FTP, my local anti-virus software gave me a warning. I presume this…

security centos mod-security

asked Jun 08 '10 at 05:00

John

0

votes

2 answers

Disable mod_security on Dreamhost, for a single cgi script

I've searched around a lot, and tried various tweaks to .htaccess files to try to turn off mod_security for a particular cgi script (uber uploader) but it doesn't seem to have any effect. The most popular one I see rehashed all over the web is: #…

mod-security dreamhost

asked Apr 26 '10 at 19:06

Hippyjim

211
2
7
19

0

votes

1 answer

How can I have APF block script kiddies that mod_security detects?

In one of the vhosts' error_log I found thousands of lines like these, all from the same IP: [Mon Apr 19 08:15:59 2010] [error] [client 61.147.67.206] mod_security: Access denied with code 403. Pattern match…

security firewall mod-security

asked Apr 22 '10 at 15:50

Gaia

1,855
5
34
60

0

votes

0 answers

Is Apache mod_evasive really worthful

I read an article saying that apache mod_evasive is an old outdated module and does not real protection against Dos attack. After testing a scenario of load requests to a apache webpage it seems like it is really not protecting at all, although the…

apache-2.4 ddos mod-security

asked Aug 28 '23 at 14:56

Cris_Al

1
1

Questions tagged [mod-security]