[mod-security-users] Permission denied

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi all,

I'm running Centos 7 and I issued the following command:
 git clone https://github.com/SpiderLabs/owasp-modsecurity-crs.git

I followed the steps in INSTALL.

In my httpd.conf I have the following:
LoadModule security2_module modules/mod_security2.so

<VirtualHost *:80>
    ServerName www.osisolutions.com
    SecRuleEngine On
    IncludeOptional /etc/httpd/modsecurity.d/activated_rules/*.conf
</VirtualHost>

<IfModule dir_module>
    DirectoryIndex index.html
</IfModule>

<IfModule security2_module>
                Include modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
                Include modsecurity.d/owasp-modsecurity-crs/rules/*.conf
</IfModule>

If I start http I get the following:

Mar 25 10:03:38 new-host-2 systemd[1]: Starting The Apache HTTP Server...
-- Subject: Unit httpd.service has begun start-up
-- Defined-By: systemd
-- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit httpd.service has begun starting up.
Mar 25 10:03:38 new-host-2 httpd[8138]: [Mon Mar 25 10:03:38.726534 2019]
[so:warn] [pid 8138] AH01574: module security2_module is already loaded,
skipping
Mar 25 10:03:38 new-host-2 httpd[8138]: httpd: Syntax error on line 178 of
/etc/httpd/conf/httpd.conf: Could not open configuration file
/etc/httpd/modsecurity.d/owasp-modsecurity-crs/crs-setup.conf: Permission
denied
Mar 25 10:03:38 new-host-2 systemd[1]: httpd.service: main process exited,
code=exited, status=1/FAILURE
Mar 25 10:03:38 new-host-2 kill[8139]: kill: cannot find process ""
Mar 25 10:03:38 new-host-2 systemd[1]: httpd.service: control process
exited, code=exited status=1
Mar 25 10:03:38 new-host-2 systemd[1]: Failed to start The Apache HTTP
Server.
-- Subject: Unit httpd.service has failed
-- Defined-By: systemd
-- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit httpd.service has failed.

[root@new-host-2 ~]# ls -la
/etc/httpd/modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
-rw-r--r--. 1 apache apache 33615 Mar 24 12:17
/etc/httpd/modsecurity.d/owasp-modsecurity-crs/crs-setup.conf

I changed to 777 and I still get the same error.

If I comment:

<IfModule security2_module>
                Include modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
                Include modsecurity.d/owasp-modsecurity-crs/rules/*.conf
</IfModule>

Apache works

Thanks
Monah