Apache2 sql injection rule not starting

Question

apache 2 not starting

The config for modsecurity is set up correctly.

score 0 · Answer 1 · answered Oct 01 '14 at 13:23

0

The file /usr/share/modsecurity-crs/activated_rules/modsecurity_41_sql_injection_attacks.data is missing or not readable by the web server daemon. Just like the error message says.

answered Oct 01 '14 at 13:23

E. Celis

717
7
17

Yes , but How to find it , or better say, how to make it work ? because when I installed everything , it was no folder active rules and I created it. – Orlando Onofrei Oct 01 '14 at 20:19
You should read the documentation before trying blindly something you found in some random blog. Check this two links https://github.com/SpiderLabs/owasp-modsecurity-crs and https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project – E. Celis Oct 02 '14 at 05:26

score 0 · Answer 2 · answered Oct 02 '14 at 06:04

0

Check if "modsecurity_41_sql_injection_attacks.data" is in "/usr/share/modsecurity-crs/base_rules" and copy it to "/usr/share/modsecurity-crs/activated_rules".

answered Oct 02 '14 at 06:04

Ronald

2,864
3
25
36

Apache2 sql injection rule not starting

2 Answers2