ModSecurity is a free open source Firewall for Web application which can help you to guard against Intrusion on your webservers like local file inclusion attacks, Cross Site Scripting, and SQL injection vulnerabilities and many more.
The easiest way to install mod_security is using yum, to get the latest package of modsecurity refer to jason litka rpms.
Lets Start
Install the gpg Key
You need to be Root to run this:
[ashwin@ashwin ~]$ rpm –import http://www.jasonlitka.com/media/RPM-GPG-KEY-jlitka
Create a File
[ashwin@ashwin ~]$ touch /etc/yum.repos.d/utterramblings.repo
Open the File using your favorite editor and add the contents
[ashwin@ashwin ~]$ vim /etc/yum.repos.d/utterramblings.repo [utterramblings] name=Jason’s Utter Ramblings Repo baseurl=http://www.jasonlitka.com/media/EL$releasever/$basearch/ enabled=1 gpgcheck=1 gpgkey=http://www.jasonlitka.com/media/RPM-GPG-KEY-jlitka
Save the File and exit
Now you can Install Mod-Security
[root@ashwin ~]# yum install mod_security Setting up Install Process Parsing package install arguments Resolving Dependencies --> Running transaction check ---> Package mod_security.i386 0:2.5.9-1.jason.1 set to be updated --> Finished Dependency Resolution Dependencies Resolved ============================================================================= Package Arch Version Repository Size ============================================================================= Installing: mod_security i386 2.5.9-1.jason.1 utterramblings 1.2 M Transaction Summary ============================================================================= Install 1 Package(s) Update 0 Package(s) Remove 0 Package(s) Total download size: 1.2 M Is this ok [y/N]: y Downloading Packages: (1/1): mod_security-2.5.9 100% |=========================| 1.2 MB 00:03 warning: rpmts_HdrFromFdno: Header V3 DSA signature: NOKEY, key ID 0d4306ef Importing GPG key 0x0D4306EF "Jason Litka (http://www.jasonlitka.com) <jasonlitka@verizon.net>" from http://www.jasonlitka.com/media/RPM-GPG-KEY-jlitka Is this ok [y/N]: y Running rpm_check_debug Running Transaction Test Finished Transaction Test Transaction Test Succeeded Running Transaction Installing: mod_security ######################### [1/1] Installed: mod_security.i386 0:2.5.9-1.jason.1 Complete!
Great You have installed mod security Restart HTTPD service and Roll. Check the Logs and you will find the magic.
Issues :
1. Starting httpd: httpd: Syntax error on line 210 of /etc/httpd/conf/httpd.conf: Syntax error on line 3 of /etc/httpd/conf.d/mod_security.conf: Cannot load /etc/httpd/modules/mod_security2.so into server: /etc/httpd/modules/mod_security2.so: undefined symbol: ap_get_server_banner
Solution :
[root@ashwin ~]# yum remove httpd mod_perl mod_perl-devel mod_security [root@ashwin ~]# mv /etc/yum.repos.d/CentOS-Base.repo /tmp ( move base centos repo to /tmp ) [root@ashwin ~]# yum install httpd ( This will install apache from utterramblings.repo ) [root@ashwin ~]# yum install mod_perl mod_perl-devel [root@ashwin ~]# yum install mod_security
Use Mac as well? Check out for Mac security software.
Related posts:
- Solved : Lock table is out of available locker entries – Yum install, yum upgrade Recently faced a issue while installing a package using yum...
- Step by Step Installing mod_security from Source in Linux Centos5.4, Fedora12 Howto To Install mod Security from the source go to the...
- Howto Install RED5 Flash Media Server in Fedora 11, Centos 5.4, Redhat Red5 is an Open Source Flash Media Server written in...
- PHP Fatal error: Call to undefined function json_encode, How to install JSON in PHP PHP 5.2 has included inbuilt json_encode() and json_decode() functions by...
- Solved: PHP Fatal error: Call to undefined function json_encode(), How to Install JSON in PHP PHP 5.2 has included inbuilt json_encode() and json_decode() functions by...