Re: [mod-security-users] mod_security and virtual hosts
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] mod_security and virtual hosts
|
From: Ivan R. <iv...@we...> - 2005-08-15 17:10:46
|
Justin Grindea wrote:
> allright, this rocks.
> I knew about the exclude directive but didn't know about the inheritance
> from main file. Assumed that if I put it in the vhost block I'll need to
> put in all the rules for every vhost and exclude the ones I don't want...
>
> the IDs idea is great but still, I'm looking into a way to catalog the
> rules, use them more wisely and update them as needed. Maybe MySQL can
> help here?
I don't think so, the relational model is not rich enough for
this particular purpose.
I've been thinking a lot about that problem. I am attaching a
draft of a specification I designed as a vehicle to distribute
rules, and to make sure only the rules you want are installed.
--
Ivan Ristic
Apache Security (O'Reilly) - http://www.apachesecurity.net
Open source web application firewall - http://www.modsecurity.org
|
