Re: [mod-security-users] Permission denied

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Eero,

Thanks a lot, that was the problem, disabled selinux and it worked.

On Mon, Mar 25, 2019 at 10:40 AM Eero Volotinen <eer...@ik...>
wrote:

> Is SeLinux enabled? in enforcing mode?
>
>
>
> Eero
>
> On Mon, Mar 25, 2019, 16:37 Monah Baki <mon...@gm...> wrote:
>
>> Hi all,
>>
>> I'm running Centos 7 and I issued the following command:
>>  git clone https://github.com/SpiderLabs/owasp-modsecurity-crs.git
>>
>> I followed the steps in INSTALL.
>>
>> In my httpd.conf I have the following:
>> LoadModule security2_module modules/mod_security2.so
>>
>> <VirtualHost *:80>
>>     ServerName www.osisolutions.com
>>     SecRuleEngine On
>>     IncludeOptional /etc/httpd/modsecurity.d/activated_rules/*.conf
>> </VirtualHost>
>>
>> <IfModule dir_module>
>>     DirectoryIndex index.html
>> </IfModule>
>>
>> <IfModule security2_module>
>>                 Include modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
>>                 Include modsecurity.d/owasp-modsecurity-crs/rules/*.conf
>> </IfModule>
>>
>> If I start http I get the following:
>>
>> Mar 25 10:03:38 new-host-2 systemd[1]: Starting The Apache HTTP Server...
>> -- Subject: Unit httpd.service has begun start-up
>> -- Defined-By: systemd
>> -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
>> --
>> -- Unit httpd.service has begun starting up.
>> Mar 25 10:03:38 new-host-2 httpd[8138]: [Mon Mar 25 10:03:38.726534 2019]
>> [so:warn] [pid 8138] AH01574: module security2_module is already loaded,
>> skipping
>> Mar 25 10:03:38 new-host-2 httpd[8138]: httpd: Syntax error on line 178
>> of /etc/httpd/conf/httpd.conf: Could not open configuration file
>> /etc/httpd/modsecurity.d/owasp-modsecurity-crs/crs-setup.conf: Permission
>> denied
>> Mar 25 10:03:38 new-host-2 systemd[1]: httpd.service: main process
>> exited, code=exited, status=1/FAILURE
>> Mar 25 10:03:38 new-host-2 kill[8139]: kill: cannot find process ""
>> Mar 25 10:03:38 new-host-2 systemd[1]: httpd.service: control process
>> exited, code=exited status=1
>> Mar 25 10:03:38 new-host-2 systemd[1]: Failed to start The Apache HTTP
>> Server.
>> -- Subject: Unit httpd.service has failed
>> -- Defined-By: systemd
>> -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
>> --
>> -- Unit httpd.service has failed.
>>
>>
>>
>> [root@new-host-2 ~]# ls -la
>> /etc/httpd/modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
>> -rw-r--r--. 1 apache apache 33615 Mar 24 12:17
>> /etc/httpd/modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
>>
>> I changed to 777 and I still get the same error.
>>
>> If I comment:
>>
>> <IfModule security2_module>
>>                 Include modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
>>                 Include modsecurity.d/owasp-modsecurity-crs/rules/*.conf
>> </IfModule>
>>
>> Apache works
>>
>>
>>
>> Thanks
>> Monah
>> _______________________________________________
>> mod-security-users mailing list
>> mod...@li...
>> https://lists.sourceforge.net/lists/listinfo/mod-security-users
>> Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
>> http://www.modsecurity.org/projects/commercial/rules/
>> http://www.modsecurity.org/projects/commercial/support/
>>
>