On Mon, Feb 13, 2012 at 04:24:57PM -0600, Ryan Barnett wrote: > > On 2/13/12 4:56 PM, "Christian Bockermann" <ch...@jwall.org> wrote: > > > > (4) Provide packages for RPM/Debian > > > > Josh and me had a discussion on "the perfect setup" a while ago, > >thinking about the > > best structure on how to setup ModSecurity rules and configurations. > >Having a simple > > structure provided within RPM and Debian packages would ease the > >setup and could be > > valuable as upgrade-tool as well. > > From my perspective it would be perfect to follow Ivan's ModSecurity > >Handbook in this > > perspective (e.g. the /opt/modsecurity/ directory structure). > > This could go hand-in-hand with signing the packages with official > >GPG-keys. > > > > In addition to providing a ZIP/alternative package (e.g. for > >Windows), of course. > > I know that we already have some package manager folks (Jason Litka, > Alberto Gonzalez Iniesta, etc...) handling the ModSecurity engine itself > which are listed under the "Community-Produced Binary Packages" listing - > http://www.modsecurity.org/download/ > > Maybe we can discuss this with them.
Hi there! Debian packages (and probably RH ones) won't install files under /opt. That tree is left for 3rd party apps (as in not supplied by the distribution). The Debian package uses /usr/share/modsecurity-crs/, as per FHS [1], and suggests how to include the rules from your ModSecurity configuration file [2]. Any improvement/suggestion is always welcome! Regards, Alberto [1] http://www.pathname.com/fhs/2.2/fhs-4.11.html [2] /usr/share/doc/modsecurity-crs/README.Debian -- Alberto Gonzalez Iniesta | Formación, consultoría y soporte técnico agi@(inittab.org|debian.org)| en GNU/Linux y software libre Encrypted mail preferred | http://inittab.com Key fingerprint = 9782 04E7 2B75 405C F5E9 0C81 C514 AF8E 4BA4 01C3 _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
