Thread: RE: [mod-security-users] SecUploadDir Question
Brought to you by:
victorhora,
zimmerletw
From: Jeremy J. <jj...@ac...> - 2004-04-09 18:58:04
|
Thanks Ivan, That fixed things right up. Do you guys compile any other modules into a high-security apache webserver? Right now, I'm playing with mod_security, mod_headers, mod_ssl, and mod_dosevasive. Let me know if you have seen any other modules of this nature, and thanks again! -Jeremy -----Original Message----- From: Ivan Ristic [mailto:iv...@we...]=20 Sent: Friday, April 09, 2004 11:14 AM To: Jeremy Junginger Cc: mod...@li... Subject: Re: [mod-security-users] SecUploadDir Question Jeremy Junginger wrote: > The following two directives are giving me trouble, and I'm unable to=20 > capture POST data: >=20 > SecUploadDir /usr/local/apache/upload > SecUploadKeepFiles On >=20 > It yields the following error: >=20 > Syntax error on line 1255 of /usr/local/apache/conf/httpd.conf: > Invalid command 'SecUploadDir', perhaps mis-spelled or defined by a=20 > module not included in the server configuration >=20 > Line 1255: SecUploadDir /usr/local/apache/upload >=20 > I am using mod_security 1.7.6 and have created the=20 > /usr/local/apache/upload dir with 755 privs. Any insights you can=20 > provide would be very helpful. That functionality is only available in the 1.8 branch. Download the nightly CVS snapshot and try with that (1.8dev1 is pretty old by now and will soon be replaced with a new development release). --=20 ModSecurity (http://www.modsecurity.org) [ Open source IDS for Web applications ] |
From: Ivan R. <iv...@we...> - 2004-04-15 18:43:12
|
Jeremy Junginger wrote: > Thanks Ivan, > > That fixed things right up. Do you guys compile any other modules into a > high-security apache webserver? Right now, I'm playing with mod_security, > mod_headers, mod_ssl, and mod_dosevasive. Let me know if you have seen any > other modules of this nature, and thanks again! mod_setenvif and mod_rewrite tend to be very useful too. -- ModSecurity (http://www.modsecurity.org) [ Open source IDS for Web applications ] |