Hey Christian, Although you could not figure out what went wrong, I did! Somehow I downloaded an old version of the CRS, after downloading the one via the link in your tutorial everything works like it should.
Thanks for the help and sorry for making such a simple mistake :) Jeroen -----Oorspronkelijk bericht----- Van: Christian Folini [mailto:christian.fol...@netnea.com] Verzonden: donderdag 8 februari 2018 6:04 Aan: Wisse J.S. (Jeroen) <js.wi...@zeeland.nl> CC: 'owasp-modsecurity-core-rule-set@lists.owasp.org' <owasp-modsecurity-core-rule-set@lists.owasp.org> Onderwerp: Re: [Owasp-modsecurity-core-rule-set] Error creating rule: Unknown variable: pk_ref)/ Hey Jeroen, This is an ancient bug actually: https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEyjaeoR0g&u=https%3a%2f%2fgithub%2ecom%2fSpiderLabs%2fowasp-modsecurity-crs%2fissues%2f181 It is fixed since the release of CRS 3. Given you base on my tutorial which follows that version, I do not know how you could encounter it. Regs, Christian On Wed, Feb 07, 2018 at 01:51:17PM +0000, Wisse J.S. (Jeroen) wrote: > Hello all, > > > I get the following error message in Windows event viewer when i try to > launch apache with the core ruleset enabled: > > Error creating rule: Unknown variable: pk_ref)/ > > > I am using the following tutorial to setup apache and mod_security: > > [1]https://www.netnea.com/cms/apache-tutorial-7_including-modsecurity-c > ore-rules/ > > > HTTPD –V: > > > Server version: Apache/2.4.23 (Win64) > > Apache Lounge VC11 Server built: Jul 8 2016 11:33:36 > > Server's Module Magic Number: 20120211:61 > > Server loaded: APR 1.5.2, APR-UTIL 1.5.4 > > Compiled using: APR 1.5.2, APR-UTIL 1.5.4 > > Architecture: 64-bit > > Server MPM: WinNT > > threaded: yes (fixed thread count) > > forked: no > > Server compiled with.... > > -D APR_HAS_SENDFILE > > -D APR_HAS_MMAP > > -D APR_HAVE_IPV6 (IPv4-mapped addresses disabled) > > -D APR_HAS_OTHER_CHILD > > -D AP_HAVE_RELIABLE_PIPED_LOGS > > -D DYNAMIC_MODULE_LIMIT=256 > > -D HTTPD_ROOT="/apache" > > -D SUEXEC_BIN="/apache/bin/suexec" > > -D DEFAULT_PIDLOG="logs/httpd.pid" > > -D DEFAULT_SCOREBOARD="logs/apache_runtime_status" > > -D DEFAULT_ERRORLOG="logs/error.log" > > -D AP_TYPES_CONFIG_FILE="conf/mime.types" > > -D SERVER_CONFIG_FILE="conf/httpd.conf" > > > HTTPD –M: > > > Loaded Modules: > > core_module (static) > > win32_module (static) > > mpm_winnt_module (static) > > http_module (static) > > so_module (static) > > access_compat_module (shared) > > actions_module (shared) > > alias_module (shared) > > allowmethods_module (shared) > > asis_module (shared) > > auth_basic_module (shared) > > authn_core_module (shared) > > authn_file_module (shared) > > authz_core_module (shared) > > authz_groupfile_module (shared) > > authz_host_module (shared) > > authz_user_module (shared) > > autoindex_module (shared) > > env_module (shared) > > headers_module (shared) > > include_module (shared) > > isapi_module (shared) > > log_config_module (shared) > > mime_module (shared) > > negotiation_module (shared) > > setenvif_module (shared) > > socache_shmcb_module (shared) > > proxy_module (shared) > > proxy_http_module (shared) > > logio_module (shared) > > unique_id_module (shared) > > ssl_module (shared) > > security2_module (shared) > > > Does anyone have any idea how I can fix this issue? I tried searching > google but could not find a solution. > > > Met vriendelijke groet, > > > Jeroen Wisse | GIS infrastructuur ontwikkeling en beheer > > T. +31 118 631725 | E. [2]js.wi...@zeeland.nl > > > cid:image001.png@01D1E102.89F8E770 > > Provinciehuis | Abdij 6, 4331 BK Middelburg | +31 118 631011 > Postbus 6001, 4330 LA Middelburg | > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEj1Y-Mf0A&u=http%3a%2f%2f3%5dwww%2ezeeland%2enl > | [4]@provzeeland > | > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJE3_Y7EdiA&u=http%3a%2f%2f5%5dfacebook%2ecom%2fprovinciezeeland > | > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJBv-NLYQ0w&u=http%3a%2f%2f6%5dinstagram%2ecom%2fprovinciezeeland > | > [http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-F > t9nJErwNOIehQ&u=http%3a%2f%2f7%5ddataportaal%2ezeeland%2enl > > References > > 1. > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEv1NLNIgw&u=https%3a%2f%2fwww%2enetnea%2ecom%2fcms%2fapache-tutorial-7%5fincluding-modsecurity-core-rules%2f > 2. mailto:/ > 3. > http://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEv-ZeMehQ&u=http%3a%2f%2fwww%2ezeeland%2enl%2f > 4. > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJBz0ZOIZiA&u=https%3a%2f%2ftwitter%2ecom%2fprovzeeland > 5. > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJESkaONI1Q&u=https%3a%2f%2fwww%2efacebook%2ecom%2fprovinciezeeland > 6. > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJE__ZOMchA&u=https%3a%2f%2fwww%2einstagram%2ecom%2fprovinciezeeland%2f > 7. > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-F > t9nJE73aeAchg&u=https%3a%2f%2fdataportaal%2ezeeland%2enl%2f > _______________________________________________ > Owasp-modsecurity-core-rule-set mailing list > Owasp-modsecurity-core-rule-set@lists.owasp.org > https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-F > t9nJEj3aeNLiA&u=https%3a%2f%2flists%2eowasp%2eorg%2fmailman%2flistinfo > %2fowasp-modsecurity-core-rule-set -- https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJEjwZ-BKhQ&u=https%3a%2f%2fwww%2efeistyduck%2ecom%2ftraining%2fmodsecurity-training-course https://scanmail.trustwave.com/?c=8790&d=xdr72mAWs0HXAlwBnphS_9XonIB-Ft9nJE_zYOpMiQ&u=https%3a%2f%2fwww%2efeistyduck%2ecom%2fbooks%2fmodsecurity-handbook%2f mailto:christian.fol...@netnea.com twitter: @ChrFolini _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
