Re: [mod-security-users] Trying to compile mod_security centos4.464bit....
Brought to you by:
victorhora,
zimmerletw
From: Ofer S. <OferS@Breach.com> - 2007-02-04 06:22:26
|
=20 The latest Core Rule Set version (1.3.2) required ModSecurity 2.1 =20 ~ Ofer =20 ________________________________ From: Tom Bishop [mailto:bis...@gm...]=20 Sent: Sunday, February 04, 2007 4:42 AM To: Ofer Shezaf; mod...@li... Subject: Re: [mod-security-users] Trying to compile mod_security centos4.464bit.... =20 I am using the core rule set (looks very interesting) but upon restarting httpd I got this error: Starting httpd: Syntax error on line 24 of /etc/httpd/conf/modsecurity/modsecurity_crs_40_generic_attacks.conf: Error parsing actions: Invalid setting for ctl name auditLogParts: +E=20 Any suggestions? Thanks On 2/1/07, Ofer Shezaf <Of...@br...> wrote: =20 While slightly biased, I would recommend starting with the Core Rule Set (http://www.modsecurity.org/projects/rules/index.html ). The provide a very good starting point and quite a lot of value out of the box. You can find an interesting discussion on the Core Rule Set at http://www.modsecurity.org/blog/archives/2007/01/key_advantages.html=20 =20 ~ Ofer Shezaf Core Rule Set project leader =20 =20 =20 ________________________________ From: mod...@li... [mailto:mod...@li...] On Behalf Of Tom Bishop Sent: Thursday, February 01, 2007 7:54 PM To: Ryan Barnett; mod...@li... Subject: Re: [mod-security-users] Trying to compile mod_security centos4.464bit.... =20 Go this to compile last night, needed to load the module stated below and in the instructions and had to make sure libxml was off to get it to sucessflly install. Now I just need to figure out what the best policies should be for what I am running, which means I need to read, read, and read. Thanks all for the help. :)=20 On 1/31/07, Ryan Barnett < Rya...@br... <mailto:Rya...@br...> > wrote: Tom, ModSecurity uses the Apache module mod_unique_id to produce unique ID #s for each transaction for the audit logging. In order to check if you have mod_unique_id already installed as a DSO, just check for the LoadModule entry in your httpd.conf file - =20 # cd /usr/local/apache/conf # grep mod_unique httpd.conf LoadModule unique_id_module modules/mod_unique_id.so =20 =20 --=20 Ryan C. Barnett Breach Security: Director of Application Security Training Web Application Security Consortium (WASC) Member CIS Apache Benchmark Project Lead SANS Instructor, GCIA, GCFA, GCIH, GSNA, GCUX, GSEC Author: Preventing Web Attacks with Apache =20 ________________________________ From: mod...@li... [mailto:mod...@li...] On Behalf Of Tom Bishop Sent: Wednesday, January 31, 2007 10:12 AM To: Ivan Ristic; mod...@li... Subject: Re: [mod-security-users] Trying to compile mod_security centos 4.464bit.... =20 Thanks for the reply, I have investigated that also, but being a being a newbie to apache (not Linux though) I wasn't sure what the second line meant " Make sure you have mod_unique_id installed." Sorry but I'm not sure where to look to make sure this is installed. If someone can point in the direction of this I will proceed with the instructions. Thanks for the code, I've started reading through your book.=20 On 1/31/07, Ivan Ristic < iva...@gm... <mailto:iva...@gm...> > wrote: Hi Tom, >From your output it appears that you are trying to compile ModSecurity 2.x directly using the apxs utility. You should be using the Makefile instead. Please follow the process described in the manual:=20 http://www.modsecurity.org/documentation/modsecurity-apache/2.1.0-rc6/ht ml-multipage/02-installation.html=20 and we'll take it from there. On 1/29/07, Tom Bishop <bis...@gm...> wrote: > I've looked in the archives and google and can't seem to find a "how to" to=20 > get this to work. I'm running centos 4.4x64 and not sure how to get this to > complete, here's my output, any help would be appreciated...thanks. > > > [root@sbddauntless apache2]# apxs -cia modsecurity.c > /bin/sh /usr/lib64/apr/build/libtool --silent --mode=3Dcompile gcc -prefer-pic > -O2 -g -pipe -m64 -DAP_HAVE_DESIGNATED_IN > ER -DLINUX=3D2 -D_REENTRANT -D_GNU_SOURCE -pthread = -I/usr/include/apr-0=20 > -I/usr/include/httpd -c -o modsecurity.lo modse > c && touch modsecurity.slo > /bin/sh /usr/lib64/apr/build/libtool --silent --mode=3Dlink gcc -o > modsecurity.la -rpath /usr/lib64/httpd/modules -modu > id-version modsecurity.lo > /usr/bin/ld: .libs/modsecurity.o: relocation R_X86_64_PC32 against > `msre_format_metadata' can not be used when making > d object; recompile with -fPIC > /usr/bin/ld: final link failed: Bad value > collect2: ld returned 1 exit status > apxs:Error: Command failed with rc=3D65536 > > ------------------------------------------------------------------------ -=20 > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get the chance to share your > opinions on IT & business topics through brief surveys - and earn cash > http://www.techsay.com/default.php?page=3Djoin.php&p=3Dsourceforge&CID=3D= DEVDE V=20 > > _______________________________________________=20 > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > > > -- Ivan Ristic =20 =20 =20 |