ModSecurity Open Source Web Application Firewall
ModSecurity(TM) is an open source intrusion detection and prevention
engine for web applications (or a web application firewall). Operating
as an Apache Web server module or standalone, the purpose of
ModSecurity is to increase web application security, protecting web
applications from known and unknown attacks.
- Developed at Apache:Modules
- Sources inherited from project openSUSE:Factory
-
1
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Backports:SLE-15-SP4:FactoryCandidates/apache2-mod_security2 && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
ModSecurity-Frequently-Asked-Questions-FAQ.html.bz |
0000011838 11.6 KB | |
README-SUSE-mod_security2.txt | 0000000321 321 Bytes | |
Reference-Manual.html.bz2 | 0000060381 59 KB | |
SpiderLabs-owasp-modsecurity-crs-2.2.9-5-gebe8790. |
0000280011 273 KB | |
apache2-mod_security2-no_rpath.diff | 0000013998 13.7 KB | |
apache2-mod_security2.changes | 0000010426 10.2 KB | |
apache2-mod_security2.spec | 0000005673 5.54 KB | |
empty.conf | 0000000189 189 Bytes | |
mod_security2.conf | 0000010766 10.5 KB | |
modsecurity-2.8.0.tar.gz | 0003940357 3.76 MB | |
modsecurity_diagram_apache_request_cycle.jpg | 0000046799 45.7 KB |
Revision 16 (latest revision is 31)
Stephan Kulow (coolo)
accepted
request 246670
from
Roman Drahtmueller (draht)
(revision 16)
- Portability: provide /etc/apache2/mod_security2.d/empty.conf to avoid a non-match of the file-glob in the Include statement from /etc/apache2/conf.d/mod_security2.conf . This restores the Include back from the IncludeOptional, which is not portable. - Source URL set to (expanded) https://www.modsecurity.org/tarball/2.8.0/modsecurity-2.8.0.tar.gz - Fixed spec file to work with older distribution versions. Before openSuSE 13.1 aclocal doesn't work, instead autoreconf has to be called. - last changelog does not say that apache2-mod_security2-libtool-fix.diff was obsoleted. - BuildRequires: libtool missing - apache2-mod_security2-libtool-fix.diff: initialize libtool. - apache2-mod_security2-no_rpath.diff: avoid the usage of -rpath in autoconf m4 macros. Obsoletes patch modsecurity-apache_2.8.0-build_fix_pcre.diff - use automake for build, add autoconf and automake to BuildRequires:. This fix is combined with [bnc#876878]. - turn on --enable-htaccess-config - use %{?_smp_mflags} for build - OWASP rule set. [bnc#876878] new in 2.8.0 (more complete changelog to add to last changelog): * Connection limits (SecConnReadStateLimit/SecConnWriteStateLimit) now support white and suspicious list
Comments 1
Could you please upgrade the version to the latest one, 2.9.2-1? Thank you very much!