Questions tagged [modsecurity]

I'm trying to install mod_evasive and mod_security vainly, with httpd24 under Cenots 6.10. I have tried this solution : https://github.com/shivaas/mod_evasive, downloaded : mod_evasive24.c $APACHE_ROOT/bin/apxs -i -a -c mod_evasive24.c i got that…

We have the following mod_security rule which is loaded globally on the server: SecAction "id:219000,phase:2,pass,setvar:'tx.xmlrpc_watch_period=300',setvar:'tx.xmlrpc_requests_limit=5',setvar:'tx.xmlrpc_block_timeout=600',nolog" I would like to be…

I am trying to secure my Apache2 installation on my Ubuntu 22.04 server, using OWASP rules with ModSecurity, but when I installed the v3.3.4 rules and activated modsecurity, Apache2 won't start. Packages installed: apache2 …

I am using Nginx open-source and ModSecurity version 3.0.4. I have run "OWASP ModSecurity Core Rule Set (CRS)" and it has worked well. But recently I have bought the Commercial Rules from Trustwave SpiderLabs and it doesn't work, even though the…