how to install Mod_Security

Discussion in 'General' started by Cyber-DL, Jul 1, 2009.

  1. Cyber-DL

    Cyber-DL New Member

    no , i'm using DirectAdmin
  2. anewday

    anewday Moderator

    Where is your rules file? For example, if it is in /etc/modsecurity/ then the audit_log file will be in /etc/logs/audit_log
    Last edited: Jul 20, 2009
  3. Cyber-DL

    Cyber-DL New Member

    my rules is in /etc/modsecurity2/ and loaded from /etc/httpd/conf/extra/httpd-includes.conf , so where is correct location ?

    /etc/logs/audit_log didn't exist , this path ( or correct path ) will be create Or must be create manualy ?!

    Best Regards
  4. Cyber-DL

    Cyber-DL New Member

    anybody can't help me ?!
  5. anewday

    anewday Moderator

    You need to make the folder if it doens't exist. It should be in /etc/logs/audit_log
    Last edited: Jul 23, 2009
  6. Cyber-DL

    Cyber-DL New Member

    i do this , and i set chmod 777 for /etc/logs and for /etc/logs/audit_log ,

    but after that i opened scriptet like c99 shell script and other part of my servers has problem with rules , but any thing wasn't in /etc/logs/audit_log

    any idea !?
  7. anewday

    anewday Moderator

    Try:

    touch audit_log
  8. Cyber-DL

    Cyber-DL New Member

    i do it ! but nothing appeared ,

    Code:
    [root@nvidia logs]# touch audit_log
    [root@nvidia logs]#
    
  9. Cyber-DL

    Cyber-DL New Member

    i think this take long time ! so did you have Yahoo ID for chat ?! or if you're using another messenger , tell what's that , it's better continue it in CHAT , and the answer will be paste here !

    Best Regards
  10. anewday

    anewday Moderator

    Change the owner of the file to the same user that Apache is running as. If it still doesn't work then it could be due to the fact that mod_security 2 uses different syntax.
    Last edited: Jul 28, 2009
  11. Cyber-DL

    Cyber-DL New Member

    i'm using LiteSpeed Enterprise , not apache !

    i should change it to apache or lshttpd
  12. anewday

    anewday Moderator

    I meant the user Litespeed is running as.
  13. Cyber-DL

    Cyber-DL New Member

    everythings allright !? is any thing wrong with this ?
  14. anewday

    anewday Moderator

    It looks ok.
  15. Cyber-DL

    Cyber-DL New Member

    Correct is :

    set full path in your rule files , here for example my log file is a logz and located in /etc/modsecurity2/logs

    Code:
    SecAuditLog /etc/modsecurity2/logs/logz
    

Share This Page