Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
cant get mod_security rules to work..
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
dirtbag
Guru
Guru


Joined: 18 Feb 2003
Posts: 508
Location: NC

PostPosted: Sat Sep 29, 2012 7:31 pm    Post subject: cant get mod_security rules to work.. Reply with quote

I just updated mod_security and mod_security-crs to the latest version and restarted apache and I get the following

Code:

Syntax error on line 148 of /etc/apache2/modules.d/mod_security/10_asl_rules.conf:
ModSecurity: No action id present within the rule
[Sat Sep 29 15:10:45 2012] [warn] module security2_module is already loaded, skipping
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/apache2/modules.d/mod_security/10_asl_antimalware.conf:25).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/apache2/modules.d/mod_security/10_asl_rules.conf:30).
Syntax error on line 148 of /etc/apache2/modules.d/mod_security/10_asl_rules.conf:
ModSecurity: No action id present within the rule
[Sat Sep 29 15:10:46 2012] [warn] module security2_module is already loaded, skipping
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/apache2/modules.d/mod_security/10_asl_antimalware.conf:25).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/apache2/modules.d/mod_security/10_asl_rules.conf:30).
Syntax error on line 148 of /etc/apache2/modules.d/mod_security/10_asl_rules.conf:
ModSecurity: No action id present within the rule


ive googled but cant figure out what this "no action id ...." means.

regards,
db
Back to top
View user's profile Send private message
turtles
Veteran
Veteran


Joined: 31 Dec 2004
Posts: 1253

PostPosted: Wed Oct 03, 2012 7:08 am    Post subject: Reply with quote

I am not sure if this helps but I was just checking it out and saw your post.
http://blog.modsecurity.org/2008/07/modsecurity-tri.html
Also
Did you get a new config file you need to update?
_________________
Donate to Gentoo
Back to top
View user's profile Send private message
dirtbag
Guru
Guru


Joined: 18 Feb 2003
Posts: 508
Location: NC

PostPosted: Wed Oct 10, 2012 1:55 am    Post subject: Reply with quote

ok so i wiped out my old mod_security rules and upgraded to the latest.. modsecurity-crs-2.2.6
I believe this is all I have now.. and now I get the following when i try to start up apache.

Code:

Syntax error on line 40 of /etc/apache2/modules.d/80_modsecurity-crs.conf:
Invalid command 'SecComponentSignature', perhaps misspelled or defined by a module not included in the server configuration
Syntax error on line 40 of /etc/apache2/modules.d/80_modsecurity-crs.conf:
Invalid command 'SecComponentSignature', perhaps misspelled or defined by a module not included in the server configuration



any ideas?


* www-apache/mod_security
Latest version available: 2.7.0_rc3
Latest version installed: 2.7.0_rc3
Size of files: 1,010 kB
Homepage: http://www.modsecurity.org/
Description: Web application firewall and Intrusion Detection System for Apache.
License: Apache-2.0

* www-apache/modsecurity-crs
Latest version available: 2.2.6
Latest version installed: 2.2.6
Size of files: 284 kB
Homepage: http://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project
Description: Core Rule Set for ModSecurity
License: Apache-2.0



-db
Back to top
View user's profile Send private message
turtles
Veteran
Veteran


Joined: 31 Dec 2004
Posts: 1253

PostPosted: Wed Oct 10, 2012 2:37 am    Post subject: Reply with quote

What version of Apache are you running?
_________________
Donate to Gentoo
Back to top
View user's profile Send private message
dirtbag
Guru
Guru


Joined: 18 Feb 2003
Posts: 508
Location: NC

PostPosted: Wed Oct 10, 2012 2:44 pm    Post subject: Reply with quote

* www-servers/apache
Latest version available: 2.2.22-r1
Latest version installed: 2.2.22-r1

-db
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum