modsecurity-crs-docker
modsecurity-crs-docker copied to clipboard
Official ModSecurity Docker + Core Rule Set (CRS) images
If anyone else is wondering how to use this image for in a non-root context then what worked for me in the Dockerfile: ``` ... # chown all modsecurity and...
I have a form which submits base64 images, so the request body size is somewhere in the 8Mb. If I don't specify `MODSEC_REQ_BODY_NOFILES_LIMIT` with a big number, then I will...
From #62 , we should investigate if we can have old images laying around in hub. ``` Unfortunately, all images on docker-hub (see: https://hub.docker.com/r/owasp/modsecurity-crs/tags) have just been overridden and it...
Currently the `SecDisableBackendCompression` option is completely unavailable, even though CRS requires it to be `On` by default. This PR fixes that. I've left out NGINX since it only supports V3...
Hello, I am getting hard to run a quick apache/nginx webserver + waf for demonstration purposes, I would prefer to use owasp/modsecurity image as a standalone server rather than a...
A sed-command error appears when starting the container with non-root user. ```bash sed: cannot rename /etc/modsecurity.d/owasp-crs/sedoXeakT: Operation not permitted ``` I've tried to avoid that error using `chmod -R 777`...
We may want to add an action for docker security scanning: https://github.com/phonito/phonito-scanner-action
Hello, I am using `owasp/modsecurity-crs:apache-alpine` in my kubernetes cluster. The image is configured in a `Deployment` and I have the following liveness & readiness defined: ``` readinessProbe: httpGet: path: /healthz...
Removing these non-forward secrecy ciphers from Apache configuration: ``` ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384 ```