I have tried to set up mod security on centos 6 in amazon web services but the log didn't recive or store any data, also I tried to put mod evasive to integrate the output logs with a SIEM but there is something that I made wrong with mod security, I tried to change the level of the mod from inform to block but I can't stop any kind of atack like sql injection and neither log any request.
Where can I get a more complete documentation? I saw that depending of the os, the version, the apache version, ..., there are a lot of differents posibilities. And.. really, more time I spent with this configuration and more doubts I have I also tried to add the OWASP CRS rules, I added it with symbolic links to the folder active_rules and neither works Can anyone help me please? Which are the steps that I must to do and where can I found something good like dokumentation, manuals, step by step config or similar information that could help me in this project Thanks in advance Regards Wiktor Nykiel http://www.wiktornykiel.com em...@wiktornykiel.com _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
