Linukstricks.com: Mod

Thursday 12 September 2013

Mod_Security

######################### APACHE START #########################

#wget "http://archive.apache.org/dist/httpd/httpd-2.2.21.tar.gz"

#tar -zxvf httpd-2.2.21.tar.gz

#cd httpd-2.2.21

#./configure --prefix=/opt/apache1

#make

#make install

#rm -rf /softwares/httpd-2.2.21

#vi /opt/apache1/conf/httpd.conf
Listen 81
User apache
Group apache
Include conf/php.conf

#cp /etc/httpd/modules/libphp5* /opt/apache1/modules/
#cp /etc/httpd/conf.d/php.conf /opt/apache1/conf/
#/opt/apache1/bin/apachectl -k restart

######################### APACHE END #########################

######################### Mod_Security START #########################

#yum install apr-devel
#yum install pcre-devel
#yum install libxm*

Downlaod package form official download :
#wget http://www.modsecurity.org/download/modsecurity-apache_2.5.13.tar.gz
#tar zxvf modsecurity-apache_2.5.13.tar.gz
#cd modsecurity-apache_2.5.13/apache2/

#./configure --with-apr=/usr/bin/apr-1-config
OR
./configure --with-apr=/usr/bin/apr

OR
./configure --prefix=/usr/local --with-apxs=/usr/local/sbin/

# make;make install

vi /etc/httpd/conf/httpd.conf (Add one line to your configuration to load module. you may find module under /usr/local/apache2/modules/)

LoadModule security2_module modules/mod_security2.so

# service httpd restart
Thats it, now you may check the loaded module.
#httpd -M |grep security

Syntax OK

#mkdir -p /etc/modsecurity2/base_rules/
#cd /etc/modsecurity2/base_rules/

wget http://www.modsecurity.org/download/modsecurity-core-rules_2.5-1.6.1.tar.gz
#tar -zxvf modsecurity-core-rules_2.5-1.6.1.tar.gz

#vi /etc/httpd/conf/httpd.conf (Add Following in Your Apache Config File)

<IfModule mod_security2.c>
# ModSecurity2 config file.
#
Include /etc/modsecurity2/base_rules/*conf
</IfModule>

Now Your mod security is working (On Detection Mode)

Goto Browser & Access :-

http://172.16.16.247

Your can check this bye accessing error log & access log of apache.

#tail -f /var/log/httpd/error_log
#tail -f /var/log/httpd/access_log

######################### Mod_Security END #########################

No comments:

Terms And Conditions Of Use Linukstricks.com

All content provided on this "Linukstricks.com" blog is for informational purposes only. The owner of this blog makes no representations as to the accuracy or completeness of any information on this site or found by following any link on this site.

The owner of Linukstricks.com will not be liable for any errors or omissions in this information nor for the availability of this information. The owner will not be liable for any losses, injuries, or damages from the display or use of this information.

The owner is not responsible for the republishing of the content found on this blog on other Web sites or media without permission.

This terms and conditions is subject to change at anytime with or without notice.

All post,data and information published on this blog site is only for informational purposes.

This is a personal blog site.The posts & information posted here in blog represent my own experience and not my employer.

Linukstricks.com

Thursday 12 September 2013

Mod_Security

No comments:

Post a Comment

About Me