Felipe,
How did you get around cross compiling with-apxs=/usr/sbin/apxs  ?  When the apxs config wants to start httpd?
But httpd can't run on the i686 arch when the binary is for arm?  Can the build host use its own i686 httpd binary in the case?
Cheers
 Derek


On Sat, Mar 1, 2014 at 12:51 PM, Derek & Vicky <thewerthfam@gmail.com> wrote:

Felipe,
I don't plan on packaging ModSecurity on its own, but more like a library so that nginx can pull it it when built.  I think it would be nice to add it as a build option for the default nginx install/build for some platforms.  I don't think all the platforms that run nginx will have the resources to take advantage of modsecurity too. 

BTW - I'll have to figure out a method to get the relevant rule sets. CRS?  like freshcalm is for calmav.  Any recommendations on that front?
Thanks
    Derek




On 02/28/2014 09:13 PM, Felipe Costa wrote:
Hi Derek,

I am happy that you managed to get it working. 

ModSecurity running on OpenWRT is something cool. Are you planning to pack it into an "ipk"? It will be nice to install ModSecurity using "opkg" ;)

Contributions are very welcome. Once you have the changes ready to go, just place a merge request using Github. If you need to discuss something just use this thread ;) 

Thanks,
Felipe "Zimmerle" Costa
Security Researcher, SpiderLabs

Trustwave | SMART SECURITY ON DEMAND

On Feb 28, 2014, at 10:22 PM, Derek & Vicky <thewerthfam@gmail.com>
 wrote:

Thanks for the diagnostics.  ld shows that the linker is not finding libraries properly as you suspected.  This is the openwr t platform.  Looks to use gcc.   The Issue I'm having I believe really has to do with the make file creation.
It suggests using rpath or rpath-link so I'm working to properly integrate them into the Makefile.

I'll report progress when get this working.
Cheers  
    Derek
 

On 02/24/2014 11:53 AM, Felipe Costa wrote:
Hi Derek,

ARM won't be a problem. We do have ModSecurity/ARM _compiled_ and _tested_ through our build farm. Here you can access the logs:


We are using a Beagle Bone Black to compile and to test it. It is running Ubuntu linux with RobertCNelson's kernel.

I believe that you are facing a problem with your cross compiling environment. Can you share more details about your host system?
How you are trying to make this cross-compilation? Do you have Scratchbox? OpenEmbeeded? are you using Linaro's gcc?

So far, I can tell you that the "config" script, which will be later used by Nginx, is generated while you got ModSecurity configured as standalone module. It is done that way to reflect on the Nginx configuration the very same options that you have used in ModSecurity compilation. If your cross compiling is replacing the CFLAGS/LDFLAGS with something else, you probably is losing the right paths to the cross compiled dependencies. Check if it is replacing the cflags. You can have a look at: 

$ cat /your/path/to/ModSecurity/nginx/modsecurity/config

This file should contain the right paths to the cross compiled dependencies. Also check if, while compiling Nginx, this paths are being used by gcc. 

Other thing that you can do, is to check which libraries ModSecurity standalone so file is linked to, just to confirm that it is linked to the right dependencies (which should reflect your target compilation platform).

Br.,
Felipe "Zimmerle" Costa
Security Researcher, SpiderLabs

Trustwave | SMART SECURITY ON DEMAND




On Feb 22, 2014, at 10:51 PM, Derek Werthmuller <thewerthfam@gmail.com>
 wrote:

Working on setting modsecurity with nginx in a forward proxy configuration on a raspberry pi. 
I've got modsecurity building ok it seems. Have nginx building with out modsecurity ok.  But nginx will not link properly with modsecurity.

nginx 1.5.10
apache 2.2.26
modsecurity 2.7.7

Getting lots of messages like modsecurity-apache_2.7.7/nginx/modsecurity/apr_bucket_nginx.c:67: undefined reference to `apr_bucket_free'

nginx doesn't have a with-apr section in its configure script, so I figure this is referring to modsecurity's use of apr.

Also seems to be having trouble finding the libxml2 libraries.
Bunch of these messages too.
../modsecurity-apache_2.7.7/nginx/modsecurity/../../standalone/.libs/standalone.a(standalone_la-msc_crypt.o): In function `hash_response_body_links':
msc_crypt.c:(.text+0x17ec): undefined reference to `xmlXPathNewContext'
msc_crypt.c:(.text+0x184c): undefined reference to `xmlXPathEvalExpression'

Any guidance on getting this compiled correctly?
Cheers

------------------------------------------------------------------------------
Managing the Performance of Cloud-Based Applications
Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
Read the Whitepaper.
http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk_______________________________________________
mod-security-developers mailing list
mod-security-developers@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-developers
ModSecurity Services from Trustwave's SpiderLabs:
https://www.trustwave.com/spiderLabs.php




This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.


------------------------------------------------------------------------------
Flow-based real-time traffic analytics software. Cisco certified tool.
Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer
Customize your own dashboards, set traffic alerts and generate reports.
Network behavioral analysis & security monitoring. All-in-one tool.
http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk


_______________________________________________
mod-security-developers mailing list
mod-security-developers@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-developers
ModSecurity Services from Trustwave's SpiderLabs:
https://www.trustwave.com/spiderLabs.php

------------------------------------------------------------------------------
Flow-based real-time traffic analytics software. Cisco certified tool.
Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer
Customize your own dashboards, set traffic alerts and generate reports.
Network behavioral analysis & security monitoring. All-in-one tool.
http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk_______________________________________________
mod-security-developers mailing list
mod-security-developers@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-developers
ModSecurity Services from Trustwave's SpiderLabs:
https://www.trustwave.com/spiderLabs.php




This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.


------------------------------------------------------------------------------
Flow-based real-time traffic analytics software. Cisco certified tool.
Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer
Customize your own dashboards, set traffic alerts and generate reports.
Network behavioral analysis & security monitoring. All-in-one tool.
http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk


_______________________________________________
mod-security-developers mailing list
mod-security-developers@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-developers
ModSecurity Services from Trustwave's SpiderLabs:
https://www.trustwave.com/spiderLabs.php