Re: [mod-security-users] problems
Brought to you by:
victorhora,
zimmerletw
From: Bunyamin D. <bun...@gm...> - 2007-07-18 11:58:27
|
Hi, Maybe for file permission chown <apache user> logs/audit.log and <IfModule mod_security2.c> SecRuleEngine On SecAuditEngine RelevantOnly SecAuditLog logs/audit.log SecAuditLogType serial SecAuditLogParts ABIFHZ SecAuditLogRelevantStatus ^[45] SecRule REQUEST_FILENAME|ARGS|ARGS_NAMES|REQUEST_HEADERS "!(^((?:(?:pos|ge)t|head))|http/(0\.9|1\.0|1\.1)$)" </IfModule> it will work when you get an error or a warning. i hope :) Best regards, -- Bunyamin Demir OWASP-Turkey Chair http://www.webguvenligi.org 2007/7/18, love wadhwa < lov...@gm...>: > > hi all > i have installed modsecurity-2.1.1 on apache - 2.0.55 and have the > following in the configuration file: > > LoadFile /usr/lib/libxml2.so > LoadModule security2_module modules/mod_security2.so > > <IfModule mod_security2.c> > SecRuleEngine On > SecAuditEngine RelevantOnly > SecRule REQUEST_FILENAME|ARGS|ARGS_NAMES|REQUEST_HEADERS > "!(^((?:(?:pos|ge)t|head))|http/(0\.9|1\.0|1\.1)$)" > SecAuditLog logs/audit.log > SecAuditLogType serial > SecAuditLogParts ABIFHZ </IfModule> > > Now i have my audit file created in the logs directory but as per the > rule it is not logging the relevant logs into the audit file and i have this > empty file as such.Kindly help me where i m wrong. > > Warm Regards > Love Wadhwa > RedHat Certified Engg > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > > -- Bunyamin Demir OWASP-Turkey Chair http://www.webguvenligi.org |