Yersinia, We are on Apache 2.2.22 and Modsecurity 2.6.3.
-----Original Message----- From: pinto.e...@gmail.com [mailto:pinto.e...@gmail.com] On Behalf Of yersinia Sent: Thursday, July 26, 2012 2:22 PM To: Nair, Praveen; owasp-modsecurity-core-rule-set@lists.owasp.org Subject: Re: [Owasp-modsecurity-core-rule-set] Please Help: ModSecurity: Failed to access DBM file "/cust/logs/audit/global": Permission denied Could be useful to know something more about your env - operating system, mod security version and if apache is operating under some mac system as apparmour or selinux for example. Best regards 2012/7/26, Nair, Praveen <pn...@barclaycardus.com>: > I would appreciate if you can provide some guidance to resolve this > error in configuring Modsecurity. Appreciate if you can help > > [Thu Jul 26 14:45:23 2012] [error] [client 10.0.150.226] ModSecurity: > Failed to access DBM file "/cust/logs/audit/global": Permission denied > [hostname "vdwb2165a"] [uri "/inservice.html"] [unique_id > "UBFYAwp@ChYAAGq0HZkAAAAE"] > > Our httpd.conf file looks like: > > <IfModule mod_security2.c> > Include /cust/apache2.2/crs/*.conf > Include /cust/apache2.2/crs/base_rules/*.conf > # mod_security audit logging use only one log file for the > entrire apache server > SecAuditEngine On > SecAuditLogRelevantStatus "^(?:5|4(?!04))" > SecAuditLogParts ABIFEHZ > SecAuditLogType Serial > # Rotate the audit logs every 6 hours > SecAuditLog "|/cust/apache2.2/bin/rotatelogs > /cust/logs/audit/cif_sec_log.%Y%m%d%H%M 21600" > SecDataDir /cust/logs/audit > SecTmpDir /cust/logs/audit > SecPcreMatchLimit 1000000 > SecPcreMatchLimitRecursion 1000000 </IfModule> > > > With Best Regards, > > Praveen Nair, CISSP, CISM, CRISC > IT Security Consultant > Security Risk & Engagement > Global Information Security > GISTR > 125 S West Street > Wilmington, DE 19801, USA > Phone: +1 302 255 7906 > Mobile: +1 302 547 1742 > Email: pn...@barclaycardus.com<mailto:pn...@barclaycardus.com> > Company Confidential > > > > Barclaycard > www.barclaycardus.com > > This email and any files transmitted with it may contain confidential > and/or proprietary information. It is intended solely for the use of > the individual or entity who is the intended recipient. Unauthorized > use of this information is prohibited. If you have received this in > error, please contact the sender by replying to this message and > delete this material from any system it may be on. > > -- Inviato dal mio dispositivo mobile Barclaycard www.barclaycardus.com This email and any files transmitted with it may contain confidential and/or proprietary information. It is intended solely for the use of the individual or entity who is the intended recipient. Unauthorized use of this information is prohibited. If you have received this in error, please contact the sender by replying to this message and delete this material from any system it may be on. _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
