mod_security 2.7.3 from CentOS is pretty old and pretty broken. The crs package is equally out of date. Recompiling mod_security from a more recent fedora SRPM and grabbing the OWASP core-rule-set from git will yield much better results, in my opinion. On 07/16/2017 02:32 PM, Nicolas Kovacs wrote: > Hi, > > I'm currently fiddling with mod_security, and before going any further, > I simply wanted to ask here for any recommended documentation/tutorials > on the subject. There seems to be a lot of information about > mod_security out there, and right now I have a bit of a hard time > wrapping my head around it. > > I'm grateful for any suggestions. > > Cheers, > > Niki Kovacs _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: Getting started with mod_security
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Getting started with mod_security
- From: John Jasen <jjasen@xxxxxxxxxxxxxxxxxx>
- Date: Fri, 28 Jul 2017 19:03:06 -0400
- In-reply-to: <a22a77c1-f4cd-561b-f457-d07928676d30@microlinux.fr>
- References: <a22a77c1-f4cd-561b-f457-d07928676d30@microlinux.fr>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
- References:
- Getting started with mod_security
- From: Nicolas Kovacs
- Getting started with mod_security
- Prev by Date: Headphones volume control not working in CentOS 7
- Next by Date: Re: Headphones volume control not working in CentOS 7
- Previous by thread: Getting started with mod_security
- Next by thread: Messages during update 'yum update' at CentOS 6 VM
- Index(es):
 |