Install ModSecurity on Debian
To install ModSecurity on Debian/Ubuntu Apache web server, run
1 |
apt-get install libapache2-mod-security2 |
Restart Apache web server
1 |
service apache2 restart |
Verify mod_security installed with
1 |
apachectl -M | grep security |
To activate ModSecurity rules, run
1 |
cp /etc/modsecurity/modsecurity.conf-recommended /etc/modsecurity/modsecurity.conf |
Edit
1 |
vi /etc/modsecurity/modsecurity.conf |
set
1 |
SecRuleEngine = on |
Get latest rules
1 2 |
mv /usr/share/modsecurity-crs /usr/share/modsecurity-crs.bk git clone https://github.com/SpiderLabs/owasp-modsecurity-crs.git /usr/share/modsecurity-crs |
Emable the config file
1 |
cp /usr/share/modsecurity-crs/crs-setup.conf.example /usr/share/modsecurity-crs/crs-setup.conf |
Edit file
1 |
vi /etc/apache2/mods-enabled/security2.conf |
Add
1 2 |
IncludeOptional /usr/share/modsecurity-crs/*.conf IncludeOptional "/usr/share/modsecurity-crs/rules/*.conf |
Restart Apache
1 |
service apache2 restart |