I installed mod_security yesterday. Unbelievable the amount of crap it will stop in 24 hrs.
Picked up the rpm at http://rpm.pbone.net
This should be made part of the CentOS extra, contribs or whatever!!
It may have a lot of false positives indeed. You need to make a lot of customization.
On Tue, Dec 15, 2009 at 10:02 AM, Thomas Dukes tdukes@sc.rr.com wrote:
I installed mod_security yesterday. Unbelievable the amount of crap it will stop in 24 hrs.
Picked up the rpm at http://rpm.pbone.net
This should be made part of the CentOS extra, contribs or whatever!!
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
_____
From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of Ceg Ryan Sent: Monday, December 14, 2009 9:49 PM To: CentOS mailing list Subject: Re: [CentOS] mod_security
It may have a lot of false positives indeed. You need to make a lot of customization.
I've had to make two tweaks for my stuff to run, but I'm not running a 'commercial' or 'ecommerce' site from home. I do use it for testing of my ecommerce site which is hosted and also for a video surveillance system. Really don't know why a hacker would be interested in my home system except for attacking other sites which I discovered this weekend.
On Tue, Dec 15, 2009 at 10:02 AM, Thomas Dukes tdukes@sc.rr.com wrote:
I installed mod_security yesterday. Unbelievable the amount of crap it will stop in 24 hrs.
Picked up the rpm at http://rpm.pbone.net
This should be made part of the CentOS extra, contribs or whatever!!
_______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On Mon, Dec 14, 2009 at 9:02 PM, Thomas Dukes tdukes@sc.rr.com wrote:
I installed mod_security yesterday. Unbelievable the amount of crap it will stop in 24 hrs.
Picked up the rpm at http://rpm.pbone.net
Please be careful when doing this. It's very common (using irc support as a basis for evaluation) to have users grabbing any old rpm they come across from here and installing it. Make sure it's an rpm that's actually built for RHEL/CentOS of the appropriate version. There are a number of support requests for folks who have slapped in a fedora, mandrake, or aging redhat package only to find things are now broken.
This should be made part of the CentOS extra, contribs or whatever!!
mod_security is in the highly public EPEL 3rd party repository, as well as directly from the mod_security website, and several other 3rd party repos, jason litka, etc... While it might be nice to bring it closer to the distro, it's not exactly lacking in distribution.
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of Jim Perrin Sent: Monday, December 14, 2009 11:13 PM To: CentOS mailing list Subject: Re: [CentOS] mod_security
On Mon, Dec 14, 2009 at 9:02 PM, Thomas Dukes tdukes@sc.rr.com wrote:
I installed mod_security yesterday. Unbelievable the
amount of crap
it will stop in 24 hrs.
Picked up the rpm at http://rpm.pbone.net
Please be careful when doing this. It's very common (using irc support as a basis for evaluation) to have users grabbing any old rpm they come across from here and installing it. Make sure it's an rpm that's actually built for RHEL/CentOS of the appropriate version. There are a number of support requests for folks who have slapped in a fedora, mandrake, or aging redhat package only to find things are now broken.
Exactly why I was advocating it be in the CentOS distribution.
The rpm I used was mod_security-2.5.9-1.el5.i386.rpm. There was one lacking dependency, lua-5.1.4-1.el5.i386.rpm.
So yes, do not install any rpm package that is not of the appropriate version. Be there, done that, bought the tee-shirt!
This should be made part of the CentOS extra, contribs or whatever!!
mod_security is in the highly public EPEL 3rd party repository, as well as directly from the mod_security website, and several other 3rd party repos, jason litka, etc... While it might be nice to bring it closer to the distro, it's not exactly lacking in distribution.
-- During times of universal deceit, telling the truth becomes a revolutionary act. George Orwell _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On 12/15/2009 09:03 PM Thomas Dukes wrote:
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of Jim Perrin Sent: Monday, December 14, 2009 11:13 PM To: CentOS mailing list Subject: Re: [CentOS] mod_security
On Mon, Dec 14, 2009 at 9:02 PM, Thomas Dukes tdukes@sc.rr.com wrote:
I installed mod_security yesterday. Unbelievable the
amount of crap
it will stop in 24 hrs.
Picked up the rpm at http://rpm.pbone.net
....
The rpm I used was mod_security-2.5.9-1.el5.i386.rpm. There was one lacking dependency, lua-5.1.4-1.el5.i386.rpm.
....
This should be made part of the CentOS extra, contribs or whatever!
....
Just a few minutes ago I installed it, then got a notice from pup that an update was available, i.e., liblua, but the install of liblua failed. Trying it with yum got me this:
... ---> Package lua.i386 0:5.1.4-1.el5.rf set to be updated --> Finished Dependency Resolution mod_security-2.5.9-1.el5.i386 from installed has depsolving problems --> Missing Dependency: liblua-5.1.so is needed by package mod_security-2.5.9-1.el5.i386 (installed) Error: Missing Dependency: liblua-5.1.so is needed by package mod_security-2.5.9-1.el5.i386 (installed) You could try using --skip-broken to work around the problem.... ...
-
Ceg Ryan -
Jim Perrin -
ken -
Thomas Dukes