49 lines
1.1 KiB
Plaintext
49 lines
1.1 KiB
Plaintext
|
<IfModule mod_security2.c>
|
||
|
|
||
|
# enable mod_security
|
||
|
SecRuleEngine On
|
||
|
# access to request bodies
|
||
|
SecRequestBodyAccess On
|
||
|
#SecRequestBodyLimit 134217728
|
||
|
#SecRequestBodyInMemoryLimit 131072
|
||
|
# access to response bodies
|
||
|
SecResponseBodyAccess Off
|
||
|
#SecResponseBodyLimit 524288
|
||
|
SecResponseBodyMimeType (null) text/html text/plain text/xml
|
||
|
#SecServerSignature "Apache/2.2.0 (Fedora)"
|
||
|
|
||
|
SecUploadDir /tmp
|
||
|
SecUploadKeepFiles Off
|
||
|
|
||
|
# default action
|
||
|
SecDefaultAction "log,auditlog,deny,status:406,phase:2"
|
||
|
|
||
|
SecAuditEngine RelevantOnly
|
||
|
#SecAuditLogRelevantStatus "^[45]"
|
||
|
# use only one log file
|
||
|
SecAuditLogType Serial
|
||
|
# audit log file
|
||
|
SecAuditLog /var/log/apache2/modsec_audit.log
|
||
|
# what is logged
|
||
|
SecAuditLogParts "ABIFHZ"
|
||
|
|
||
|
#SecArgumentSeparator "&"
|
||
|
SecCookieFormat 0
|
||
|
SecDebugLog /var/log/apache2/modsec_debug.log
|
||
|
SecDebugLogLevel 0
|
||
|
|
||
|
SecDataDir /tmp
|
||
|
SecTmpDir /tmp
|
||
|
|
||
|
#########
|
||
|
# RULES
|
||
|
#########
|
||
|
|
||
|
# File name
|
||
|
SecRule REQUEST_FILENAME "modsecuritytest1" "id:1"
|
||
|
# Complete URI
|
||
|
SecRule REQUEST_URI "modsecuritytest2" "id:2"
|
||
|
SecRule REQUEST_FILENAME "(?:n(?:map|et|c)|w(?:guest|sh)|cmd(?:32)?|telnet|rcmd|ftp)\.exe" "id:3"
|
||
|
|
||
|
</IfModule>
|