Support

bkonia · #1 08-07-2011, 01:08 PM

Which directory should the included files be placed in so that they will be found when calling pmFromFile?

lancelot · #2 03-13-2013, 06:50 PM

Did this question ever get answered? When you put the Rules inside the Litespeed config (not Apache), and use @pmFromFile, where does it look for the files at?

NiteWave · #3 03-13-2013, 08:16 PM

official document about pmFromFile:
https://github.com/SpiderLabs/ModSec...iki-pmFromFile

this directive only support in apache's httpd.conf, not inside Litespeed config.

litespeed native config compatible up to mod_security 1.9.x. pmFromFile directive is introduced from mod_security 2.5.

some users need some basic security rules, so litespeed still keep those old mod_security modules/functions for native configuration.

lancelot · #4 03-13-2013, 08:59 PM

So are you saying that the native Litespeed config only supports mod_security 1.9.x? In your CHANGELOG it says you support mod_security 2.5.x (including @pmFromFile). So is the only way to get mod_security 2.5.x support in Litespeed is to put the mod_security settings inside a Apache Configuration file, and then setup Litespeed to Load that Apache Configuration configuration? If so, then can I put only the mod_security settings inside an Apache config file, and leave everything else in the Litespeed native configuration?

I find it strange that your native configuration supports less features then if you put it into a Apache configuration file. It seems like the native configuration would support the same mod_security version level as the Apache config setup.