-
as seen on Server Fault
- Search for 'Server Fault'
I'm trying to install ModSecurity on nginx with the following instructions :
wget https://github.com/SpiderLabs/ModSecurity/archive/master.zip
unzip master
cd ModSecurity-master
./autogen.sh
./configure --enable-standalone-module
And i got the following error :
Checking plataform... Identified…
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
Greetings Serverfaultians. I'm not a server guy as you can see from my noob score of 1 point. But maybe those more versed can help me.
I'm using Ubuntu v13.10 32-bit Server and Apache2 v2.4.6 and I'm trying to set up and configure modsecurity and modevasive on an internet-exposed production/test…
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
I checked the core rules set in the mod-security but it's didn't contain the rules related to Brute-Force Attack!!! Did anyone know how to write the rules or the existing rules for this kind of Attack!
Thanks in advanced,
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
I have my Apache installed behind Nginx. So every request that comes in is first handeled by Nginx. If there is dynamic content needed the request is send to Apache which listens on port 8080.
Pretty basic reverse proxy setup.
Now with this setup the first entry point is Nginx. Is it still needed…
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
I am trying write a virtual patch using modsecurity for my hosted web application using following rule i.e.
<Location /index.php>
SecDefaultAction phase:2,t:none,log,deny
# Validate parameter names
SecRule ARGS_NAMES "!^(articleid)$" \
"msg:'Unknown parameter: %{MATCHED_VAR_NAME}'"
# Expecting…
>>> More
