May 2020
M T W T F S S
« Mar    
 123
45678910
11121314151617
18192021222324
25262728293031

Categories

WordPress Quotes

History is a relentless master. It has no present, only the past rushing into the future. To try to hold fast is to be swept aside.
John F. Kennedy
May 2020
M T W T F S S
« Mar    
 123
45678910
11121314151617
18192021222324
25262728293031

Short Cuts

2012 SERVER (64)
2016 windows (9)
AIX (13)
Amazon (40)
Ansibile (19)
Apache (135)
Asterisk (2)
cassandra (2)
Centos (211)
Centos RHEL 7 (270)
centos8 (3)
chef (3)
cloud (2)
cluster (3)
Coherence (1)
DB2 (5)
DISK (25)
DNS (9)
Docker (30)
Eassy (11)
ELKS (1)
EXCHANGE (3)
Fedora (6)
ftp (5)
GIT (3)
GOD (2)
Grub (1)
Hacking (10)
Hadoop (6)
health (2)
horoscope (23)
Hyper-V (10)
IIS (15)
IPTABLES (15)
JAVA (7)
JBOSS (32)
jenkins (1)
Kubernetes (7)
Ldap (5)
Linux (188)
Linux Commands (166)
Load balancer (5)
mariadb (14)
Mongodb (4)
MQ Server (24)
MYSQL (84)
Nagios (5)
NaturalOil (13)
Nginx (35)
Ngix (1)
openldap (1)
Openstack (6)
Oracle (35)
Perl (3)
Postfix (19)
Postgresql (1)
PowerShell (2)
Python (3)
qmail (36)
Redis (12)
RHCE (28)
SCALEIO (1)
Security on Centos (29)
SFTP (1)
Shell (64)
Solaris (58)
Sql Server 2012 (4)
squid (3)
SSH (10)
SSL (14)
Storage (1)
swap (3)
TIPS on Linux (28)
tomcat (62)
Ubuntu (1)
Uncategorized (30)
Veritas (2)
vfabric (1)
VMware (28)
Weblogic (38)
Websphere (71)
Windows (19)
Windows Software (2)
wordpress (1)
ZIMBRA (17)

WP Cumulus Flash tag cloud by Roy Tanck requires Flash Player 9 or better.

Who's Online

0 visitors online now
0 guests, 0 bots, 0 members

Hit Counter provided by dental implants orange county

Install the (ModSecurity) centos fedora redhat

Install the (ModSecurity)

cd /usr/local/src/

wget http://www.modsecurity.org/tarball/2.7.2/modsecurity-apache_2.7.2.tar.gz

tar -zxvf modsecurity-apache_2.7.2.tar.gz

cd  modsecurity-apache_2.7.2

./configure

configure: *** pcre library not found.
configure: error: pcre library is required

 

yum -y update pcre

additional package dependencies.
yum -y install  pcre-devel
yum -y install  libxml2
yum -y install  libxml2-devel

mod_unique_id need to use mod_security

cd /software/httpd-2.24/modules/metadata

/Usr/local/apache2/bin/apxs -cia Mod_unique_id.C

cd /software/httpd-2.24/Srclib/apr
./configure
make
make install

cd /software/httpd-2.24/Srclib/apr-util

./configure -with-apr=/usr/local/apr/bin/apr-1-config

make
make install

 

Recomplie apache for PCRE APR APR-UTI

cd /software/httpd-2.24

make clean

/configure –enable-so \
            –enable-rewrite \
            –enable-mods-shared=”unique_id” \
            –with-pcre \
            –with-apr=/usr/local/apr/bin/apr-1-config \
            –with-apr-util=/usr/local/apr/bin/apu-1-config \
            –prefix=/usr/local/apache2
make
make install

 

Install Mod security
cd /usr/local/src/

cd  modsecurity-apache_2.7.2

make clean

./configure \
          –prefix=/usr/local/apache2 \
          –with-apxs=/usr/local/apache2/bin/apxs \
          –with-apr=/usr/local/apache2/bin/apr-1-config \
          –with-apu=/usr/local/apache2/bin/apu-1-config \
          –with-pcre=/usr/bin/pcre-config \
          –with-libxml=/usr/bin/xml2-config \
           LDFLAGS=-L/usr/local/apache2/lib
make
make install

 

mkdir /var/modsecurity/
mkdir /var/modsecurity/data
mkdir /var/modsecurity/tmp
mkdir /var/modsecurity/upload
chown root:apache /var/modsecurity
chown apache:root /var/modsecurity/data
chown apache:apache /var/modsecurity/tmp
chown apache:root /var/modsecurity/upload/
chmod 750 /var/modsecurity
chmod 700 /var/modsecurity/data
chmod 750 /var/modsecurity/tmp
chmod 700 /var/modsecurity/upload

cd /usr/local/src

wget https://github.com/SpiderLabs/owasp-modsecurity-crs/tarball/master

tar xvfz SpiderLabs-owasp-modsecurity-crs-2.2.7-13-g40b2c75.tar.gz

mkdir /usr/local/apache2/crs

cd /usr/local/apache2/crs
cp modsecurity_crs_10_setup.conf.example modsecurity_crs_10_config.conf
vi modsecurity_crs_10_config.conf

SecRuleEngine On
# SecRequestBodyAccess
SecRequestBodyAccess On
SecResponseBodyAccess Off
# SecRequestBodyLimit
SecRequestBodyLimit 5242880
# SecRequestBodyNoFilesLimit
SecRequestBodyNoFilesLimit 51200
SecAuditEngine RelevantOnly
SecAuditLogRelevantStatus “^(?:5|4(?!04))”
SecAuditLogType Serial
SecAuditLog logs/modsec_audit.log
SecAuditLogParts “ABIFHKZ”
SecDebugLog             logs/modsec_debug.log
SecDebugLogLevel        3
SecDataDir      /var/modsecurity/data/
SecTmpDir       /var/modsecurity/tmp/
SecUploadDir    /var/modsecurity/upload/

vi /usr/local/apache2/conf/extra/httpd-modsecurity.conf

LoadModule unique_id_module modules/mod_unique_id.so
LoadModule security2_module modules/mod_security2.so
 
Include crs/modsecurity_crs_10_config.conf
Include crs/base_rules/*.conf

apache stop and start

/usr/local/apache2/bin/apachectl stop
/usr/local/apache2/bin/apachectl  start

/usr/local/apache2/bin/apachectl -M

tail -f /usr/local/apache2/log/error.log

 ModSecurity for Apache/2.2.4 (http://www.modsecurity.org/) configured.
 ModSecurity: APR compiled version=”1.4.5″; loaded version=”1.4.5″
 ModSecurity: PCRE compiled version=”8.31 “; loaded version=”5.0 13-Sep-2004”
 ModSecurity: Loaded PCRE do not match with compiled!
 ModSecurity: LIBXML compiled version=”2.8.0″
 Apache/2.2.4 (Linux) CovalentSNMP/3.0.3 configured — resuming normal operations
 SNMP: CovalentSNMP/3.0.3 started (user ‘106’ – SNMP address ‘1610’ – pid ‘7

Leave a Reply

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

  

  

  

Blue Captcha Image
Refresh

*

Protected by WP Anti Spam