Comments on: Install mod_security with the OWASP core rule set on a CentOS VPS https://www.rosehosting.com/blog/install-mod_security-with-the-owasp-core-rule-set-on-a-centos-vps/ Premium Linux Tutorials Since 2001 Fri, 03 Jun 2022 08:46:40 +0000 hourly 1 https://wordpress.org/?v=6.5.2 By: admin https://www.rosehosting.com/blog/install-mod_security-with-the-owasp-core-rule-set-on-a-centos-vps/#comment-46292 Thu, 09 Nov 2017 07:16:04 +0000 https://secure.rosehosting.com/blog/?p=4693#comment-46292 In reply to waleed.

Could you please be more specific and tell us what lines are we talking about?

]]>
By: waleed https://www.rosehosting.com/blog/install-mod_security-with-the-owasp-core-rule-set-on-a-centos-vps/#comment-46291 Wed, 08 Nov 2017 13:55:49 +0000 https://secure.rosehosting.com/blog/?p=4693#comment-46291 i did all steps
got error when restart apache

Starting httpd (via systemctl): Job for httpd.service failed because the control process exited with error code. See “systemctl status httpd.service” and “journalctl -xe” for details.
[FAILED]

php56 with centos 7
when i remove 2 include lines it works

any idea ?

]]>
By: admin https://www.rosehosting.com/blog/install-mod_security-with-the-owasp-core-rule-set-on-a-centos-vps/#comment-44175 Thu, 16 Jul 2015 03:16:14 +0000 https://secure.rosehosting.com/blog/?p=4693#comment-44175 In reply to rishi.

You can check the owasp modsecurity github repo for updates and install/update instructions.
https://github.com/SpiderLabs/owasp-modsecurity-crs

You can find more info about how to create custom rules at:
https://atomicorp.com/wiki/index.php/Mod_security#Creating_custom_rules

]]>
By: rishi https://www.rosehosting.com/blog/install-mod_security-with-the-owasp-core-rule-set-on-a-centos-vps/#comment-44171 Tue, 14 Jul 2015 11:42:19 +0000 https://secure.rosehosting.com/blog/?p=4693#comment-44171 Hi There

I am new to modsecurity and want to try in our organization, but came across few doubts. I will be glad if any body can clear them

1. OWASP modsecurity CRS : are these rules update daily (like snort rules, If so how to update). or how often they will update, In that case how to update them.
2. if i want to write my own custom rules how can i proceed :- where to create file and in which directory, Can i write all the rules in one file or a separate rule for each file
3. any recommended UI for modsecurity

Thanks in advance


Cheer’s

Nand

]]>
By: Frank https://www.rosehosting.com/blog/install-mod_security-with-the-owasp-core-rule-set-on-a-centos-vps/#comment-44028 Mon, 06 Apr 2015 17:19:12 +0000 https://secure.rosehosting.com/blog/?p=4693#comment-44028 Thanks for sharing this. Hopefully you are able to take the time answering me two questions:

1. I read the mod_sec requries mod_unique_id to be loaded but cant find that in here – is my information obsolete with modsec 2.8+ or did yo miss something?
2. I have read in many guides (for information but with limited trust) that it is important to define own rule sets in /etc/httpd/modsecurity.d/ – Any recommendations / best practices on that by you?

]]>