How to install and secure egroupware - Directory UMM
How to install and secure egroupware - Directory UMM
How to install and secure egroupware - Directory UMM
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
ModSecurity supports Apache 1.3x <strong>and</strong> Apache 2.x.<br />
6.2.1 Installing ModSecurity<br />
Unpack the mod_security source:<br />
[root@server tmp]# tar xzvf mod_security-x.x.x.tar.gz<br />
Change <strong>to</strong> the mod_security direc<strong>to</strong>ry:<br />
[root@server tmp]# cd mod_security-x.x.x/apache2<br />
You can compile the module as an Apache DSO (Dynamic Shared Object) module or statically in<strong>to</strong> the web<br />
server. If you compile it statically, you must also recompile Apache. This may yield a slight performance gain,<br />
but in general it is not significant. The following example shows only how <strong>to</strong> compile ModSecurity as a DSO<br />
module:<br />
[root@server apache2]# apxs -cia mod_security.c<br />
Under Redhat, add the follow line <strong>to</strong> your httpd.conf under the section where the modules are loaded:<br />
[root@server mod_security-1.7.4]# vi /etc/httpd/conf/httpd.conf<br />
Include /etc/httpd/conf.d/mod_security.conf<br />
You must restart your Apache web server <strong>to</strong> activate ModSecurity:<br />
6.2.2 Basic setup<br />
[root@server mod_security-1.7.4]# apachectl s<strong>to</strong>p<br />
[root@server mod_security-1.7.4]# apachectl start<br />
ModSecurity has some sample setup files included <strong>to</strong> help you configure it. You can also convert Snort rules <strong>to</strong><br />
use them inside ModSecurity. Sample Snort rules can found on the project server or you can convert them<br />
yourself.<br />
<br />
# Turn the filtering engine On or Off<br />
SecFilterEngine On<br />
# Make sure that URL encoding is valid<br />
SecFilterCheckURLEncoding On<br />
# The audit engine works independently <strong>and</strong><br />
# can be turned On of Off on the per-server or<br />
# on the per-direc<strong>to</strong>ry basis. "On" will log everything,<br />
# "DynamicOrRelevant" will log dynamic requests or violations,<br />
# <strong>and</strong> "RelevantOnly" will only log policy violations<br />
SecAuditEngine RelevantOnly<br />
Reiner Jung Install <strong>and</strong> Secure eGroupWare Page 34 of 67