Did you try to install from source or use the RPM source package? Ryan Barnett Lead Security Researcher, SpiderLabs
Trustwave | SMART SECURITY ON DEMAND www.trustwave.com <http://www.trustwave.com/> On 5/21/14 6:56 PM, "Wiktor Nykiel" <em...@wiktornykiel.com> wrote: >I have tried to set up mod security on centos 6 in amazon web services >but the log didn't recive or store any data, also I tried to put mod >evasive to integrate the output logs with a SIEM but there is something >that I made wrong with mod security, I tried to change the level of the >mod from inform to block but I can't stop any kind of atack like sql >injection and neither log any request. > >Where can I get a more complete documentation? I saw that depending of >the os, the version, the apache version, ..., there are a lot of >differents posibilities. And.. really, more time I spent with this >configuration and more doubts I have > >I also tried to add the OWASP CRS rules, I added it with symbolic links >to the folder active_rules and neither works > >Can anyone help me please? Which are the steps that I must to do and >where can I found something good like dokumentation, manuals, step by >step config or similar information that could help me in this project > >Thanks in advance > >Regards > >Wiktor Nykiel > >http://www.wiktornykiel.com >em...@wiktornykiel.com > >_______________________________________________ >Owasp-modsecurity-core-rule-set mailing list >Owasp-modsecurity-core-rule-set@lists.owasp.org >https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set > ________________________________ This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
