Re: [Mod-security-developers] ModSecurity V2 as a dynamic nginx module
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [Mod-security-developers] ModSecurity V2 as a dynamic nginx module
|
From: Felipe C. <FC...@tr...> - 2016-12-12 11:28:45
|
Hi Michael, I am glad that you have v3 working. If you have any question, we will be glad to help ;) Br., Felipe “Zimmerle” Costa Security Researcher, Lead Developer ModSecurity. Trustwave | SMART SECURITY ON DEMAND www.trustwave.com <http://www.trustwave.com/> On 12/11/16, 3:21 AM, "Muenz, Michael" <m....@sp...> wrote: >Am 10.12.2016 um 14:40 schrieb Muenz, Michael: >> Am 10.12.2016 um 14:03 schrieb Muenz, Michael: >>> Am 09.12.2016 um 12:59 schrieb Felipe Costa: >>>> Hi Michael, >>>> >>>> You may want to upgrade your libModSecurity to the most recent version, this >>>> specific issue was fixed a while ago. >>>> >>> Hi Felipe, >>> >>> were there some major changes? I did a fresh setup like in this article: >>> http://scanmail.trustwave.com/?c=4062&d=ovDM2FD_rCATjLhLm3JQLa2-N7PhoJ2yBEe-t0HnEg&s=5&u=http%3a%2f%2fwww%2erouterperformance%2enet%2fhowtos%2fsetup-modsecurity-3-and-nginx-in-debian-8%2f >>> >>> This worked with source from mid november but now I get a >>> nginx: [emerg] module >>> "/etc/nginx/modules/ngx_http_modsecurity_module.so" is not binary >>> compatible in /etc/nginx/nginx.conf:8 >>> >>> Source from nginx is the some, don't know why it doesn't work now. :( >>> >>> >> >> Doooh ... forget my mail. I forgot that with N+ you have to use the same >> configure params. >> Now it works really fine!!! >> >> The only problem I still have is, that with ModSecurity Commercial >> Rules, it takes about 5 minutes to restart/reload nginx. >> >> > >Sorry for spamming but I fixed this one too. >With nginx (ATM) you don't have to use SecRuleRemote in MS config, >instead just use the variable modsecurity_rules_remote described in >https://scanmail.trustwave.com/?c=4062&d=ovDM2FD_rCATjLhLm3JQLa2-N7PhoJ2yBEHssBe3TA&s=5&u=https%3a%2f%2fgithub%2ecom%2fSpiderLabs%2fModSecurity-nginx > > >------------------------------------------------------------------------------ >Developer Access Program for Intel Xeon Phi Processors >Access to Intel Xeon Phi processor-based developer platforms. >With one year of Intel Parallel Studio XE. >Training and support from Colfax. >Order your platform today.http://sdm.link/xeonphi >_______________________________________________ >mod-security-developers mailing list >mod...@li... >https://scanmail.trustwave.com/?c=4062&d=ovDM2FD_rCATjLhLm3JQLa2-N7PhoJ2yBEHuvUCzEQ&s=5&u=https%3a%2f%2flists%2esourceforge%2enet%2flists%2flistinfo%2fmod-security-developers >ModSecurity Services from Trustwave's SpiderLabs: >https://www.trustwave.com/spiderLabs.php ________________________________ This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. |
