ModSecurity(tm) is an open source, free web application firewall (WAF)
Apache module. WAFs are deployed to establish an external security layer
that increases security, detects and prevents attacks before they reach web
applications. It provides protection from a range of attacks against web
applications and allows for HTTP traffic monitoring and real-time analysis
with little or no changes to existing infrastructure.
You can get started with ModSecurity by adding the following lines to the
appropriate sections of Apache's main configuration file (x86
architecture):
LoadModule security2_module lib/httpd/modules/mod_security2.so
Include /etc/httpd/extra/modsecurity-recommended.conf
Also refer to the file /etc/httpd/crs/INSTALL for information on how to get the
Core Rule Set (CRS) up and running.
This SlackBuild will also verify the PGP signature of the packages if the
following conditions are met:
- You have GnuPG installed
- You have the appropriate public PGP key (0x6980F8B0)
in your trustedkeys.gpg keyring (and 0x9624FCD2 for CRS)
- You have downloaded the sig files from
http://www.modsecurity.org/download/modsecurity-apache_${VERSION}.tar.gz.asc
http://downloads.sourceforge.net/project/mod-security/modsecurity-crs/0-CURRENT/modsecurity-crs_2.2.4.tar.gz.asc