Re: [Owasp-modsecurity-core-rule-set] Please Help: ModSecurity: Failed to access DBM file "/cust/logs/audit/global": Permission denied

Thu, 26 Jul 2012 11:24:45 -0700 

Could  be useful to know something more about your env - operating
system, mod security version and if apache is operating under some mac
system as apparmour or selinux for example.

Best regards

2012/7/26, Nair, Praveen <pn...@barclaycardus.com>:
> I would appreciate if you can provide some guidance to resolve this error in
> configuring Modsecurity. Appreciate if you can help
>
> [Thu Jul 26 14:45:23 2012] [error] [client 10.0.150.226] ModSecurity: Failed
> to access DBM file "/cust/logs/audit/global": Permission denied [hostname
> "vdwb2165a"] [uri "/inservice.html"] [unique_id "UBFYAwp@ChYAAGq0HZkAAAAE"]
>
> Our httpd.conf file looks like:
>
> <IfModule mod_security2.c>
>         Include /cust/apache2.2/crs/*.conf
>         Include /cust/apache2.2/crs/base_rules/*.conf
>         # mod_security audit logging use only one log file for the entrire
> apache server
>         SecAuditEngine On
>         SecAuditLogRelevantStatus "^(?:5|4(?!04))"
>         SecAuditLogParts ABIFEHZ
>         SecAuditLogType Serial
>         # Rotate the audit logs every 6 hours
>         SecAuditLog "|/cust/apache2.2/bin/rotatelogs
> /cust/logs/audit/cif_sec_log.%Y%m%d%H%M 21600"
>         SecDataDir /cust/logs/audit
>         SecTmpDir /cust/logs/audit
>         SecPcreMatchLimit 1000000
>         SecPcreMatchLimitRecursion 1000000
> </IfModule>
>
>
> With Best Regards,
>
> Praveen Nair, CISSP, CISM, CRISC
> IT Security Consultant
> Security Risk & Engagement
> Global Information Security
> GISTR
> 125 S West Street
> Wilmington, DE 19801, USA
> Phone:  +1 302 255 7906
> Mobile: +1 302 547 1742
> Email: pn...@barclaycardus.com<mailto:pn...@barclaycardus.com>
> Company Confidential
>
>
>
> Barclaycard
> www.barclaycardus.com
>
> This email and any files transmitted with it may contain confidential and/or
> proprietary information. It is intended solely for the use of the individual
> or entity who is the intended recipient. Unauthorized use of this
> information is prohibited. If you have received this in error, please
> contact the sender by replying to this message and delete this material from
> any system it may be on.
>
>

-- 
Inviato dal mio dispositivo mobile
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set

Reply via email to