|
From: Derek & V. <the...@gm...> - 2014-03-01 17:51:51
|
Felipe,
I don't plan on packaging ModSecurity on its own, but more like a
library so that nginx can pull it it when built. I think it would be
nice to add it as a build option for the default nginx install/build for
some platforms. I don't think all the platforms that run nginx will
have the resources to take advantage of modsecurity too.
BTW - I'll have to figure out a method to get the relevant rule sets.
CRS? like freshcalm is for calmav. Any recommendations on that front?
Thanks
Derek
On 02/28/2014 09:13 PM, Felipe Costa wrote:
> Hi Derek,
>
> I am happy that you managed to get it working.
>
> ModSecurity running on OpenWRT is something cool. Are you planning to
> pack it into an "ipk"? It will be nice to install ModSecurity using
> "opkg" ;)
>
> Contributions are very welcome. Once you have the changes ready to go,
> just place a merge request using Github. If you need to discuss
> something just use this thread ;)
>
> Thanks,
> *Felipe "Zimmerle" Costa*
> Security Researcher, SpiderLabs
>
> *Trustwave* | SMART SECURITY ON DEMAND
> www.trustwave.com <http://www.trustwave.com/>
>
> On Feb 28, 2014, at 10:22 PM, Derek & Vicky <the...@gm...
> <mailto:the...@gm...>>
> wrote:
>
>> Thanks for the diagnostics. ld shows that the linker is not finding
>> libraries properly as you suspected. This is the openwr t platform.
>> Looks to use gcc. The Issue I'm having I believe really has to do
>> with the make file creation.
>> It suggests using rpath or rpath-link so I'm working to properly
>> integrate them into the Makefile.
>>
>> I'll report progress when get this working.
>> Cheers
>> Derek
>>
>>
>> On 02/24/2014 11:53 AM, Felipe Costa wrote:
>>> Hi Derek,
>>>
>>> ARM won't be a problem. We do have ModSecurity/ARM _compiled_ and
>>> _tested_ through our build farm. Here you can access the logs:
>>>
>>> http://www.modsecurity.org/developers/buildbot/builders/LinuxARM%20-%20Nginx
>>> http://www.modsecurity.org/developers/buildbot/builders/LinuxARM%20-%20Apache
>>>
>>> We are using a Beagle Bone Black to compile and to test it. It is
>>> running Ubuntu linux with RobertCNelson's kernel.
>>>
>>> I believe that you are facing a problem with your cross compiling
>>> environment. Can you share more details about your host system?
>>> How you are trying to make this cross-compilation? Do you have
>>> Scratchbox? OpenEmbeeded? are you using Linaro's gcc?
>>>
>>> So far, I can tell you that the "config" script, which will be later
>>> used by Nginx, is generated while you got ModSecurity configured as
>>> standalone module. It is done that way to reflect on the Nginx
>>> configuration the very same options that you have used in
>>> ModSecurity compilation. If your cross compiling is replacing the
>>> CFLAGS/LDFLAGS with something else, you probably is losing the right
>>> paths to the cross compiled dependencies. Check if it is replacing
>>> the cflags. You can have a look at:
>>>
>>> $ cat /your/path/to/ModSecurity/nginx/modsecurity/config
>>>
>>> This file should contain the right paths to the cross compiled
>>> dependencies. Also check if, while compiling Nginx, this paths are
>>> being used by gcc.
>>>
>>> Other thing that you can do, is to check which libraries ModSecurity
>>> standalone so file is linked to, just to confirm that it is linked
>>> to the right dependencies (which should reflect your target
>>> compilation platform).
>>>
>>> Br.,
>>> *Felipe "Zimmerle" Costa*
>>> Security Researcher, SpiderLabs
>>>
>>> *Trustwave* | SMART SECURITY ON DEMAND
>>> www.trustwave.com <http://www.trustwave.com/>
>>>
>>>
>>>
>>>
>>> On Feb 22, 2014, at 10:51 PM, Derek Werthmuller
>>> <the...@gm... <mailto:the...@gm...>>
>>> wrote:
>>>
>>>> Working on setting modsecurity with nginx in a forward proxy
>>>> configuration on a raspberry pi.
>>>> I've got modsecurity building ok it seems. Have nginx building with
>>>> out modsecurity ok. But nginx will not link properly with modsecurity.
>>>>
>>>> nginx 1.5.10
>>>> apache 2.2.26
>>>> modsecurity 2.7.7
>>>>
>>>> Getting lots of messages like
>>>> modsecurity-apache_2.7.7/nginx/modsecurity/apr_bucket_nginx.c:67:
>>>> undefined reference to `apr_bucket_free'
>>>>
>>>> nginx doesn't have a with-apr section in its configure script, so I
>>>> figure this is referring to modsecurity's use of apr.
>>>>
>>>> Also seems to be having trouble finding the libxml2 libraries.
>>>> Bunch of these messages too.
>>>> ../modsecurity-apache_2.7.7/nginx/modsecurity/../../standalone/.libs/standalone.a(standalone_la-msc_crypt.o):
>>>> In function `hash_response_body_links':
>>>> msc_crypt.c:(.text+0x17ec): undefined reference to `xmlXPathNewContext'
>>>> msc_crypt.c:(.text+0x184c): undefined reference to
>>>> `xmlXPathEvalExpression'
>>>>
>>>> Any guidance on getting this compiled correctly?
>>>> Cheers
>>>>
>>>> ------------------------------------------------------------------------------
>>>> Managing the Performance of Cloud-Based Applications
>>>> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
>>>> Read the Whitepaper.
>>>> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk_______________________________________________
>>>> mod-security-developers mailing list
>>>> mod...@li...
>>>> https://lists.sourceforge.net/lists/listinfo/mod-security-developers
>>>> ModSecurity Services from Trustwave's SpiderLabs:
>>>> https://www.trustwave.com/spiderLabs.php
>>>
>>>
>>> ------------------------------------------------------------------------
>>>
>>> This transmission may contain information that is privileged,
>>> confidential, and/or exempt from disclosure under applicable law. If
>>> you are not the intended recipient, you are hereby notified that any
>>> disclosure, copying, distribution, or use of the information
>>> contained herein (including any reliance thereon) is strictly
>>> prohibited. If you received this transmission in error, please
>>> immediately contact the sender and destroy the material in its
>>> entirety, whether in electronic or hard copy format.
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Flow-based real-time traffic analytics software. Cisco certified tool.
>>> Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer
>>> Customize your own dashboards, set traffic alerts and generate reports.
>>> Network behavioral analysis & security monitoring. All-in-one tool.
>>> http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk
>>>
>>>
>>> _______________________________________________
>>> mod-security-developers mailing list
>>> mod...@li...
>>> https://lists.sourceforge.net/lists/listinfo/mod-security-developers
>>> ModSecurity Services from Trustwave's SpiderLabs:
>>> https://www.trustwave.com/spiderLabs.php
>>
>> ------------------------------------------------------------------------------
>> Flow-based real-time traffic analytics software. Cisco certified tool.
>> Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer
>> Customize your own dashboards, set traffic alerts and generate reports.
>> Network behavioral analysis & security monitoring. All-in-one tool.
>> http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk_______________________________________________
>> mod-security-developers mailing list
>> mod...@li...
>> https://lists.sourceforge.net/lists/listinfo/mod-security-developers
>> ModSecurity Services from Trustwave's SpiderLabs:
>> https://www.trustwave.com/spiderLabs.php
>
>
> ------------------------------------------------------------------------
>
> This transmission may contain information that is privileged,
> confidential, and/or exempt from disclosure under applicable law. If
> you are not the intended recipient, you are hereby notified that any
> disclosure, copying, distribution, or use of the information contained
> herein (including any reliance thereon) is strictly prohibited. If you
> received this transmission in error, please immediately contact the
> sender and destroy the material in its entirety, whether in electronic
> or hard copy format.
>
>
> ------------------------------------------------------------------------------
> Flow-based real-time traffic analytics software. Cisco certified tool.
> Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer
> Customize your own dashboards, set traffic alerts and generate reports.
> Network behavioral analysis & security monitoring. All-in-one tool.
> http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk
>
>
> _______________________________________________
> mod-security-developers mailing list
> mod...@li...
> https://lists.sourceforge.net/lists/listinfo/mod-security-developers
> ModSecurity Services from Trustwave's SpiderLabs:
> https://www.trustwave.com/spiderLabs.php
|
