Could you please be more specific and tell us what lines are we talking about?

Starting httpd (via systemctl): Job for httpd.service failed because the control process exited with error code. See “systemctl status httpd.service” and “journalctl -xe” for details.
[FAILED]

php56 with centos 7
when i remove 2 include lines it works

any idea ?

You can check the owasp modsecurity github repo for updates and install/update instructions.
https://github.com/SpiderLabs/owasp-modsecurity-crs

You can find more info about how to create custom rules at:
https://atomicorp.com/wiki/index.php/Mod_security#Creating_custom_rules

I am new to modsecurity and want to try in our organization, but came across few doubts. I will be glad if any body can clear them

1. OWASP modsecurity CRS : are these rules update daily (like snort rules, If so how to update). or how often they will update, In that case how to update them.
2. if i want to write my own custom rules how can i proceed :- where to create file and in which directory, Can i write all the rules in one file or a separate rule for each file
3. any recommended UI for modsecurity

Thanks in advance

—
Cheer’s

Nand

1. I read the mod_sec requries mod_unique_id to be loaded but cant find that in here – is my information obsolete with modsec 2.8+ or did yo miss something?
2. I have read in many guides (for information but with limited trust) that it is important to define own rule sets in /etc/httpd/modsecurity.d/ – Any recommendations / best practices on that by you?