|
From: Ivan R. <iv...@we...> - 2005-10-26 16:39:04
|
Sven Kauber wrote: > Hi Sven, > The problem is with having large rulesets. I would like to know how I > could use the rules I get from here: > http://www.gotroot.com/mod_security+rules This far I have tried the > Include directives and copying the rules with sed. Still no luck. I > have mod_security rules in a separate part of httpd.conf, between > <IfModule..> directives in global scope and users' reverse proxy > directives are inside a separate <VirtualServer..> . For setting up > mod_security inside the <IfModule...> directive I have followed this > guide: http://www.gotroot.com/tiki-index.php?page=Setup+of+mod_security I am afraid I don't understand what the problem is. What results are you expecting that you are not getting? Can you get any rule to work, or do you have problems specifically with the rules from gotroot? > I have not had the chance to try the version 1.8.7 in Apache 2.1.8 > because it won't compile - I get errors. ModSecurity 1.8.7 doesn't work with Apache 2.1.x - they're not compatible. -- Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |
