2011-08-13 13:43:55 +02:00
|
|
|
ModSecurity(tm) is an open source, free web application firewall (WAF)
|
|
|
|
|
Apache module. WAFs are deployed to establish an external security layer
|
|
|
|
|
that increases security, detects and prevents attacks before they reach web
|
|
|
|
|
applications. It provides protection from a range of attacks against web
|
|
|
|
|
applications and allows for HTTP traffic monitoring and real-time analysis
|
|
|
|
|
with little or no changes to existing infrastructure.
|
|
|
|
|
|
|
|
|
|
You can get started with ModSecurity by adding the following lines to the
|
|
|
|
|
appropriate sections of Apache's main configuration file (x86
|
|
|
|
|
architecture):
|
|
|
|
|
|
|
|
|
|
LoadModule security2_module lib/httpd/modules/mod_security2.so
|
|
|
|
|
Include /etc/httpd/extra/modsecurity-recommended.conf
|
|
|
|
|
|
2012-05-05 18:30:01 +02:00
|
|
|
Also refer to the file /etc/httpd/crs/INSTALL for information on how to get the
|
|
|
|
|
Core Rule Set (CRS) up and running.
|
|
|
|
|
|
|
|
|
|
This SlackBuild will also verify the PGP signature of the packages if the
|
|
|
|
|
following conditions are met:
|
2011-08-13 13:43:55 +02:00
|
|
|
|
|
|
|
|
- You have GnuPG installed
|
|
|
|
|
- You have the appropriate public PGP key (0x6980F8B0)
|
2012-05-05 18:30:01 +02:00
|
|
|
in your trustedkeys.gpg keyring (and 0x9624FCD2 for CRS)
|
|
|
|
|
- You have downloaded the sig files from
|
2011-08-13 13:43:55 +02:00
|
|
|
http://www.modsecurity.org/download/modsecurity-apache_${VERSION}.tar.gz.asc
|
2012-05-05 18:30:01 +02:00
|
|
|
http://downloads.sourceforge.net/project/mod-security/modsecurity-crs/0-CURRENT/modsecurity-crs_2.2.4.tar.gz.asc
|
