Re: [mod-security-users] Core rules for mod_security 1.9x or somediffere solution...
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] Core rules for mod_security 1.9x or somediffere solution...
|
From: Robin D. <rob...@gm...> - 2008-01-03 21:08:14
|
Hi Ryan (and others), Thanks for the tips. I tried to download the GotRoot rulesets, but, they are offline. For what the compilation of mod_security v2 is concerned.. I get these errors: root@web:~/ModSecurity/modsecurity-apache_2.1.4/apache2# make Makefile:40: /etc/apache2/build/special.mk: No such file or directory make: *** No rule to make target `/etc/apache2/build/special.mk'. Stop. root@web:~/ModSecurity/modsecurity-apache_2.1.4/apache2# So then I comment out the reference to special.mk (the build directory does exists in the specified location). Then I comment out the line referring to special.mk; I get this error: root@web:~/ModSecurity/modsecurity-apache_2.1.4/apache2# make make: *** No rule to make target `local-shared-build', needed by `all'. Stop. root@web:~/ModSecurity/modsecurity-apache_2.1.4/apache2# I did install the Apache development packages. Any clues? Best, Robin _____ From: Ryan Barnett [mailto:Ryan.Barnett@Breach.com] Sent: donderdag 3 januari 2008 1:35 To: Robin Diederen; mod...@li... Subject: RE: [mod-security-users] Core rules for mod_security 1.9x or somediffere solution... There are 2 different places you can look - * The ModSecurity CVS archive for the 1.9 branch has some rules - http://mod-security.cvs.sourceforge.net/mod-security/rules/ * Check out the GotRoot Rules - http://www.gotroot.com/mod_security+rules Keep in mind that both of these rulesets have some limitations (see http://www.modsecurity.org/blog/archives/2007/01/key_advantages.html) which is why we created the Core Rules. They will, however, provide you with a starting point. As for your compilation errors with the 2.x code, did you see this past email thread? http://marc.info/?l=mod-security-users <http://marc.info/?l=mod-security-users&m=119364832414967&w=2> &m=119364832414967&w=2 Are you seeing the same errors? -- Ryan C. Barnett ModSecurity Community Manager Breach Security: Director of Training Web Application Security Consortium (WASC) Member CIS Apache Benchmark Project Lead SANS Instructor, GCIA, GCFA, GCIH, GSNA, GCUX, GSEC Author: Preventing Web Attacks with Apache _____ From: mod...@li... [mailto:mod...@li...] On Behalf Of Robin Diederen Sent: Wednesday, January 02, 2008 6:19 PM To: mod...@li... Subject: [mod-security-users] Core rules for mod_security 1.9x or somediffere solution... Hello all, First, let me introduce myself. My name is Robin and I just got into hosting (I'm hosting my own websites). While Googlin' the internet for security enhancements for web servers, I stumbled upon mod_security. After some reading, I decided to give the module a try, as it sounds as quite a promising gain. So I downloaded mod_security on my webserver (Ubuntu 6.0.6 LTS LAMP installation) by using the version offered through the Ubuntu repository. That went well (I would not have expected otherwise). Then, I downloaded the latest core ruleset from the mod_security website. However, that one didn't work, as it is meant for 2.x versions of mod_security. So now I'm looking for a ruleset that can work with the older mod_security (yeah I know I should not be doing that, but, then again, it's only for testing purposes) or. a way to install mod_security on my Ubuntu installation (the make process always breaks on various error; some I can resolve, some not). Who can help me? Best, Robin |