I would appreciate if you can provide some guidance to resolve this error in
configuring Modsecurity. Appreciate if you can help
[Thu Jul 26 14:45:23 2012] [error] [client 10.0.150.226] ModSecurity: Failed to
access DBM file "/cust/logs/audit/global": Permission denied [hostname
"vdwb2165a"] [uri "/inservice.html"] [unique_id "UBFYAwp@ChYAAGq0HZkAAAAE"]
Our httpd.conf file looks like:
<IfModule mod_security2.c>
Include /cust/apache2.2/crs/*.conf
Include /cust/apache2.2/crs/base_rules/*.conf
# mod_security audit logging use only one log file for the entrire
apache server
SecAuditEngine On
SecAuditLogRelevantStatus "^(?:5|4(?!04))"
SecAuditLogParts ABIFEHZ
SecAuditLogType Serial
# Rotate the audit logs every 6 hours
SecAuditLog "|/cust/apache2.2/bin/rotatelogs
/cust/logs/audit/cif_sec_log.%Y%m%d%H%M 21600"
SecDataDir /cust/logs/audit
SecTmpDir /cust/logs/audit
SecPcreMatchLimit 1000000
SecPcreMatchLimitRecursion 1000000
</IfModule>
With Best Regards,
Praveen Nair, CISSP, CISM, CRISC
IT Security Consultant
Security Risk & Engagement
Global Information Security
GISTR
125 S West Street
Wilmington, DE 19801, USA
Phone: +1 302 255 7906
Mobile: +1 302 547 1742
Email: pn...@barclaycardus.com<mailto:pn...@barclaycardus.com>
Company Confidential
Barclaycard
www.barclaycardus.com
This email and any files transmitted with it may contain confidential and/or
proprietary information. It is intended solely for the use of the individual or
entity who is the intended recipient. Unauthorized use of this information is
prohibited. If you have received this in error, please contact the sender by
replying to this message and delete this material from any system it may be on.
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
