Re: [mod-security-users] mod_security2 and python app
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] mod_security2 and python app
|
From: Osama E. <oel...@gm...> - 2019-10-04 02:32:35
|
How is your Python web application published? I'm guessing through Gunicorn or some other WSGI HTTP server, in which case you would to configure Apache to act as a reverse proxy to Gunicorn and make requests go through Apache instead of going directly to Gunicorn -- Osama Elnaggar On October 4, 2019 at 11:52:48 AM, Eli Agbayani (eag...@gm...) wrote: Dear mod...@li..., I've recently installed mod_security2 in Rhel. Followed this <https://tecadmin.net/install-modsecurity-with-apache-on-centos-rhel/> instructions and it worked great. Most of the websites in the machine instantly detects and reinforces the security measures of mod_security2. Unfortunately there is one application, CKAN <https://ckan.org/> which is a python application that is not affected by mod_security. How can I make this python application detect mod_security so that website can also be protected from attacks. I can send my CKAN apache conf file if needed. Thanks, Eli Agbayani _______________________________________________ mod-security-users mailing list mod...@li... https://lists.sourceforge.net/lists/listinfo/mod-security-users Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: http://www.modsecurity.org/projects/commercial/rules/ http://www.modsecurity.org/projects/commercial/support/ |
