Joris Vandermeersch
Joris Vandermeersch
Currently python dependency versions using `~=` are converted to `=` This changes that to a version range using `>=` and `= .` and `== .*`. However at least .deb packages...
Aside from updating openssl by using the package available in the latest version of Amazon Linux 2023, I also added a python-based test/example, and expanded the documentation in README.
Fixes #2313
EnabledControl.EnabledControlParameter Value type according to docs is 'array, string, number, object, or boolean', but the spec simply states 'Json', which does not allow the values required. https://docs.aws.amazon.com/AWSCloudFormation/latest/TemplateReference/aws-properties-controltower-enabledcontrol-enabledcontrolparameter.html#cfn-controltower-enabledcontrol-enabledcontrolparameter-value EnabledBaseline.Parameter Value type...
Currently mod_evasive only checks the requests's `useragent_ip`. This is useless when running behind a reverse proxy (or NAT firewall?). Check if the `X-Forwarded-For` header exists and contains a valid ip...
Possibly related to #2 When mpm_itk is installed and active, mod_evasive never gets triggered. Disabling mpm_itk makes mod_evasive behave as expected. Tested on Debian 8.9, Apache 2.4.10
IPv4 requests are blocked and logged as expected.