2011-08-13 19:43:55 +08:00
|
|
|
ModSecurity(tm) is an open source, free web application firewall (WAF)
|
|
|
|
Apache module. WAFs are deployed to establish an external security layer
|
|
|
|
that increases security, detects and prevents attacks before they reach web
|
|
|
|
applications. It provides protection from a range of attacks against web
|
|
|
|
applications and allows for HTTP traffic monitoring and real-time analysis
|
|
|
|
with little or no changes to existing infrastructure.
|
|
|
|
|
|
|
|
You can get started with ModSecurity by adding the following lines to the
|
|
|
|
appropriate sections of Apache's main configuration file (x86
|
|
|
|
architecture):
|
|
|
|
|
|
|
|
LoadModule security2_module lib/httpd/modules/mod_security2.so
|
2014-04-09 17:31:49 +08:00
|
|
|
<IfModule security2_module>
|
2011-08-13 19:43:55 +08:00
|
|
|
Include /etc/httpd/extra/modsecurity-recommended.conf
|
2014-04-09 17:31:49 +08:00
|
|
|
</IfModule>
|
2011-08-13 19:43:55 +08:00
|
|
|
|
2012-05-06 00:30:01 +08:00
|
|
|
Also refer to the file /etc/httpd/crs/INSTALL for information on how to get the
|
|
|
|
Core Rule Set (CRS) up and running.
|
|
|
|
|
2012-10-11 02:26:24 +08:00
|
|
|
This SlackBuild will also verify the PGP signature of the package if the
|
2012-05-06 00:30:01 +08:00
|
|
|
following conditions are met:
|
2011-08-13 19:43:55 +08:00
|
|
|
|
|
|
|
- You have GnuPG installed
|
|
|
|
- You have the appropriate public PGP key (0x6980F8B0)
|
2012-05-06 00:30:01 +08:00
|
|
|
in your trustedkeys.gpg keyring (and 0x9624FCD2 for CRS)
|
2012-10-11 02:26:24 +08:00
|
|
|
- You have downloaded the sig file from
|
2011-08-13 19:43:55 +08:00
|
|
|
http://www.modsecurity.org/download/modsecurity-apache_${VERSION}.tar.gz.asc
|
2012-10-11 02:26:24 +08:00
|
|
|
|
|
|
|
lua is an optional dependency.
|