Introducing mod_security
Subject:   issue with mod_security2
Date:   2006-10-30 10:31:56
From:   monicat
Hi, I install/compile mod_securiy Version 2.0.2 as a DSO to work with apache-2.2.3 and I could not get mod_security to work.

After untar the the tar ball,
$cd modsecurity-apache_2.0.2/apache2

Edit the Makefile to update tpp_dir to my apache tree:
top_dir = /home/truong/apache/2.2.3

Then I do the make but got error complain about file pcre.h missing so I copy the /usr/include/pcre/pcre.h into modsecurity-apache_2.0.2/apache2 and redo the make and it works fine. I stop apache and go ahead and did the make install. Add this line into httpd.conf:
LoadFile /usr/lib/
LoadModule unique_id_module modules/
LoadModule security2_module modules/
Include conf/hole/mod_security2.conf
And create a security's confile as follow:

$ cat conf/hole/mod_security2.conf
<IfModule mod_security.c>
# Server masking is optional
SecServerSignature "Microsoft-IIS/5.0"

restart the server and access some bogus file but the Server Signature still said "Apache/2.2.3 (Unix) Server at gendev-lnx Port 9090" instead of "Microsoft-IIS/5.0".

I think there is something wrong with the way I compile mod_security or something is not working right on my linux system (
Linux gendev-lnx 2.4.21-37.0.1.ELhugemem #1 SMP Wed Jan 11 18:35:52 EST 2006 i686 i686 i386 GNU/Linux)
because mod_security did not work at all even thought the apache's server did indidate this in the errorlog:
[Mon Oct 30 12:57:10 2006] [notice] ModSecurity for Apache 2.0.2 configured
[Mon Oct 30 12:57:12 2006] [notice] Apache/2.2.3 (Unix) configured -- resuming normal operations
Anyone have any other to test mod_security to see if it working correctly?

1 to 1 of 1
1 to 1 of 1