Blog Archives for category modsecurity

ModSecurity: Audit log: Failed to create subdirectories: /var/asl/data/audit/nobody/

Noticed the below error in apache error log [Wed Jan 07 11:19:54.786501 2015] [:error] [pid 24001:tid 140170514261760] [client 1.2.3.4] ModSecurity:… Continue reading »

No action id present within the rule

I have installed mod_security 2.7 which comes with the latest easyapache. After compiling I have got the following error. No… Continue reading »

configure: *** apr library not found.

Got the following error while trying to compile modsec manually. checking for libpcre config script… /usr/bin/pcre-config configure: using ‘-L/usr/lib -lpcre’… Continue reading »

configure: *** apu library not found

Got the following error while trying to compile modsec manually. checking for libapr config script… /usr/local/apache/bin/apr-1-config configure: using ‘ -luuid… Continue reading »

Internal server error (Mod security related)

First step is to  check apache error logs. If they return something like the following, ModSecurity: Output filter: Response body… Continue reading »

Modsec error “mod_unique_id to be installed”

If modsec throws this error in apache error_log ModSecurity: ModSecurity requires mod_unique_id to be installed Sol:- cd /home/cpeasyapache/src/httpd-x.x.x/modules/metadata /usr/local/apache/bin/apxs -i… Continue reading »

mod_security2 installation on apache2 and configuration(Linux)

Download and install modsec2 cd /usr/src/src wget http://www.modsecurity.org/download/modsecurity-apache_2.5.13.tar.gz tar -zxf modsecurity-apache_2.5.13.tar.gz cd modsecurity-apache_2.5.13 cd apache2 ./configure –with-apxs=/usr/local/apache/bin/apxs make make install… Continue reading »

Disable mod_security rule for a specific application and a domain.

Whitelisting a domain in mod_security ————————————- To whitelist a domain so that their site can work without any problem simply… Continue reading »

Disable Mod Security for a specific domain

If Apache is compiled with SuPhp and Mod Security, do the following: mkdir -p /usr/local/apache/conf/userdata/std/2/<USERNAME>/<DOMAIN NAME> Then create a mod_security… Continue reading »

ModSecurity: ModSecurity requires mod_unique_id to be installed

If modsec throws this error in apache error_log ModSecurity: ModSecurity requires mod_unique_id to be installed Sol:- cpanel server cd /home/cpeasyapache/src/httpd-x.x.x/modules/metadata… Continue reading »