ModSecurity-apache icon indicating copy to clipboard operation
ModSecurity-apache copied to clipboard

Published 20 hours ago verified publisher icon owasp-modsecurity

Having all the configurations set in the Apache fashion.

Open zimmerle opened this issue 7 years ago • 2 comments

The Apache configuration directives are available in v2 here: https://github.com/SpiderLabs/ModSecurity/blob/v2/master/apache2/apache2_config.c#L3180-L3923

This functionality have to be mimic-ed into something related on version 3. In case of an error, the error message could differ a little bit but to logic should prevail. Run time errors should be treated in run time. Startup error should be handled into startup phase.

A feature that is not supported in v3 any longer, should generate a warning but it should not block the web server startup.

A special note on memory consumption. Memory consumption to load the configurations was proved to be a critical point in may use case. Therefore it should be treated with special attention.

zimmerle avatar Nov 27 '17 16:11 zimmerle

Hi, I was wondering if there was any progress on having documentation for Apache and ModSecurity 3?

Thanks!

misilot avatar Jan 11 '19 14:01 misilot

Hi @misilot

We added some updates to documentation as of: https://github.com/SpiderLabs/ModSecurity-apache/commit/7a8c78f3d20a4848bdd7e6eb056e808a184b164e

If you have any comments or suggestions regarding documentation, please add them at https://github.com/SpiderLabs/ModSecurity-apache/issues/53 or some other related issue.

Thanks!

victorhora avatar Feb 02 '19 23:02 victorhora