Over on rpmfind.net I was able to find a Fedora Core 3 module for modsecurity that I was able to install on Fedora Core 2. I had tried the one for Fedora Core 5 but no go- too many dependency issues.
This was the one that worked:
ftp://194.199.20.114/linux/fedora/extras/3/i386/mod_security-1.9.4-1.fc3.i386.rpm
After downloading I did a:
rpm -Uvh mod_security-1.9.4-1.fc3.i386.rpm
warning: mod_security-1.9.4-1.fc3.i386.rpm: V3 DSA signature: NOKEY, key ID 1ac70ce6
Preparing... ########################################### [100%]
1:mod_security ########################################### [100%]
Then it was time to checkout the mod_security.conf file located over at /etc/httpd/conf.d/.
I uncommented out these lines:
SecFilter "delete[[:space:]]+from"
SecFilter "insert[[:space:]]+into"
SecFilter "select.+from"
This line:
SecFilter "<(.|\n)+>"
generated false positives on some web post forms so I kept it uncommented.
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment