Discussion:
[Owasp-modsecurity-core-rule-set] What mod_security rules could I for apache1?
Matthew Young
2009-09-23 19:26:38 UTC
Permalink
Hello,

We use apache1 with modsecurity-apache-1.9.3 included by OpenBSD. It is my
understanding the newest version of the core rules are only compatible with
apache2? if not.. is there any ruleset (supported or not) that I could use?

Thank you

-Matt
Christian Bockermann
2009-09-28 08:37:51 UTC
Permalink
Hi Matt,

the core-rules have been designed for ModSecurity 2.x right from the
begining (IIRC).
The only "bundled-rules" for 1.3, which I am aware of, can be found at www.gotroot.com

Best regards,

Chris
Post by Matthew Young
Hello,
We use apache1 with modsecurity-apache-1.9.3 included by OpenBSD. It
is my understanding the newest version of the core rules are only
compatible with apache2? if not.. is there any ruleset (supported or
not) that I could use?
Thank you
-Matt
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
Matthew Young
2009-09-28 15:58:50 UTC
Permalink
What is the differance bewteen "bundled rules" and the current rule set?

Thanks
Post by Christian Bockermann
Hi Matt,
the core-rules have been designed for ModSecurity 2.x right from the
begining (IIRC).
The only "bundled-rules" for 1.3, which I am aware of, can be found at www.gotroot.com
Best regards,
Chris
Hello,
Post by Matthew Young
We use apache1 with modsecurity-apache-1.9.3 included by OpenBSD. It is my
understanding the newest version of the core rules are only compatible with
apache2? if not.. is there any ruleset (supported or not) that I could use?
Thank you
-Matt
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
Christian Bockermann
2009-09-28 19:03:11 UTC
Permalink
Hi Matt,

the "core rules" are a set of rules (or "bundled rules" :-) if you
like) which are provided
and maintained by Breach Security. These used to be distributed along
with the ModSecurity
module and have lately been split into a separate project.
(As far as I know, the ModSecurity distribution does include them as
well.)

With "bundled rules" I was just referring to someone/some institution
which is providing a
"set of rules" [1] for protection with ModSecurity and is maintaining
them continuously (updates,
etc.)
Michael Shinn et.al. provide rules at their gotroot.com site for quite
a long time, now.
Matthew Young
2009-09-29 21:24:46 UTC
Permalink
Thank you Christian .... However as the gotroot.com website says...
they do not update anymore the Apache1 rules.

As a apache1 user... what would be the best approach to this... are
these updates crucial for security (just confirming)?


-Matt
Post by Christian Bockermann
Hi Matt,
the "core rules" are a set of rules (or "bundled rules" :-) if you like)
which are provided
and maintained by Breach Security. These used to be distributed along with
the ModSecurity
module and have lately been split into a separate project.
(As far as I know, the ModSecurity distribution does include them as well.)
With "bundled rules" I was just referring to someone/some institution which
is providing a
"set of rules" [1] for protection with ModSecurity and is maintaining them
continuously (updates,
etc.)
Michael Shinn et.al. provide rules at their gotroot.com site for quite a
long time, now.
Michael Shinn
2009-10-01 20:55:28 UTC
Permalink
Post by Matthew Young
Thank you Christian .... However as the gotroot.com website says...
they do not update anymore the Apache1 rules.
They are still there to download, we just don't update the 1.9.x rules
anymore.
Post by Matthew Young
As a apache1 user... what would be the best approach to this... are
these updates crucial for security (just confirming)?
-Matt
Post by Christian Bockermann
Hi Matt,
the "core rules" are a set of rules (or "bundled rules" :-) if you like)
which are provided
and maintained by Breach Security. These used to be distributed along with
the ModSecurity
module and have lately been split into a separate project.
(As far as I know, the ModSecurity distribution does include them as well.)
With "bundled rules" I was just referring to someone/some institution which
is providing a
"set of rules" [1] for protection with ModSecurity and is maintaining them
continuously (updates,
etc.)
Michael Shinn et.al. provide rules at their gotroot.com site for quite a
long time, now.
Continue reading on narkive:
Loading...