modsecurity-crs-docker
modsecurity-crs-docker copied to clipboard
Official ModSecurity Docker + Core Rule Set (CRS) images
I just updated the first of my containers with the new version 4. After some adjustments the only issue left is that my CrowdSec instance no longer detects the ips...
I've been actively using version 3.5.5 for CrowdSec bouncers (firewall bouncer and django bouncer for django apps). However I wasn't able to implement nginx bouncer due to lack of lua...
Use pcre2 for building on apache
``` docker run --privileged --rm -ti owasp/modsecurity-crs:3.3.5-nginx-alpine-202401080101 /etc/modsecurity.d # grep SecRule setup.conf SecRuleScript "/tmp/2.lua" "id:23333,deny" /etc/modsecurity.d/owasp-crs # cat /tmp/2.lua function main() --error("4444") --print("4444") m.log(1,"4444") m.log(2,"4444") return nil; end ``` I...
I'm trying to run this image in my helm chart running in OCP4 whereby we have a quality gate that only allows pods with readOnlyRootFilesystem set to true. Is there...
It is possible to use SecServerSignature/ServerSignature to modify the server header to not give potential attackers extra info?
Our official plugins use the following lua modules (from [this query](https://github.com/search?q=org%3Acoreruleset+path%3A%2F**%2F*.lua+%22require%22&type=code)): - socket - zlib so we must add those to the official image. Packages are: - lua-lzlib - lua-socket
Hi I am using modsecurity-crs:nginx as a proxy for my backend, which is an API. On a totally different machine, there is a frontend JS application. Modern JS needs to...
I have a basic setup with the following environment variables set: - name: MODSEC_RULE_ENGINE value: 'DetectionOnly' - name: SERVER_NAME value: example.com.au - name: PROXY_SSL value: 'on' - name: PROXY value:...