|
From: Felipe C. <FC...@tr...> - 2014-02-10 14:09:02
|
Hi Eric, So far I know Websphere Application Server can run altogether with the following HTTP servers: - Apache HTTP Server; - IBM HTTP Server; - Microsoft Internet Information Services (IIS); - Netscape Enterprise Server. Can you or someone else tell me if ModSecurity will work in a stock Websphere Application Server environment (that does not have Apache)? I could not find anything saying that it can. If it can, what are some of the implementation details? I'm using WebCastellum with some success but would prefer to use a framework like ModSecurity that is maintained. Do you know which HTTP server you are using? For IIS, we have the ModSecurityIIS version. You can download it straight from http://www.modsecurity.org. For the IBM HTTP Server, I believe it is powered by Apache. So you should be able to get it working. While get it compiled make sure that you are using the same libraries versions that are used by IBM Server, including: libapr. Br., Felipe "Zimmerle" Costa Security Researcher, SpiderLabs Trustwave | SMART SECURITY ON DEMAND www.trustwave.com<http://www.trustwave.com/> ________________________________ This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. |
