Arch Linux
CentOS
Fedora
Linux Mint
Suse
Ubuntu
Opensource
Android
FAQs
Q/A Forum
Firefox 16, a treat for developers http://t.co/cnd27CzT
Secure your Cebian /Ubuntu server with Mod_Security
HowTo install mod-security2 on Debian can be
ModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server,
acting as a powerful umbrella – shielding applications from attacks. ModSecurity supports both branches of the Apache web server.
1. Install required packages
apt-get install libxml2-dev liblua5.1-0 lua5.1 apache2-dev build-essential
2. Fetch the latest mod-security (2.5.11)
cd /tmp
wget http://www.modsecurity.org/download/modsecurity-apache_2.5.11.tar.gz
3. Extract mod-security
tar zxvf modsecurity-apache_2.5.11.tar.gz
4. Enter mod-security directory
cd modsecurity-apache_2.5.11/apache2/
5. Build mod-security
./configure && make && make install
If all is well mod-security should now be in /usr/lib/apache2/modules/ and called mod_security2.so
6. Create the mod-security load file for apache to load it
vi /etc/apache2/mods-available/mod-security2.load
and add the following lines:
LoadFile /usr/lib/libxml2.so
LoadFile /usr/lib/liblua5.1.so.0
LoadModule security2_module /usr/lib/apache2/modules/mod_security2.so
and save it (ESC :wq)
7. Enable the module to load with apache (unique_id is required for mod-security, it should come standard with apache)
a2enmod mod-security2
a2enmod unique_id
8. Tell apache where to load the mod-security config
vi /etc/apache2/conf.d/mod-security2.conf
and add the following line:
Include /etc/modsecurity2/*.conf
and save it (ESC :wq)
9. Create the mod-security directories and logs
mkdir /etc/modsecurity2
mkdir /etc/modsecurity2/logs
touch /etc/modsecurity2/logs/modsec_audit.log
touch /etc/modsecurity2/logs/modsec_debug.log
10. Copy the core rules into the mod-security dirs
more info on the core rules can be found on
http://www.modsecurity.org/projects/rules/index.html
cp /tmp/modsecurity-apache_2.5.11/rules/*.conf /etc/modsecurity2
11. Update the rules so the log locations are correct
vi /etc/modsecurity2/modsecurity_crs_10_config.conf
Find
SecDebugLog logs/modsec_debug.log
Replace with
SecDebugLog /etc/modsecurity2/logs/modsec_debug.log
Find
SecAuditLog logs/modsec_audit.log
Replace with
SecAuditLog /etc/modsecurity2/logs/modsec_audit.log
and save it (ESC :wq)
12. Check apache config is ok
apache2ctl configtest
(should return Syntax OK)
13. Restart apache
/etc/init.d/apache2 restart
14. Check mod-security2 is running
cat /var/log/apache2/error.log | grep ModSecurity
[Thu Mar 27 14:56:58 2008] [notice] ModSecurity for Apache/2.5.4 (http://www.modsecurity.org/) configured.
For questions please refer to our Q/A forum at : http://ask.unixmen.com
Mel Kham
Founder of Unixmen, Living in Amsterdam. Am working in my free time to help people to understand the Opensource and to explain them in easy way how to make the fist steps to the the light.
Working day and night with my Co-founder Zinovsky to keep this website live even with less resources.
Like us on Facebook
This week Top Posts 
Top Things to do After Installing Ubuntu 13.04 ‘Raring Ringtail’ : Ubuntu 13.04 Raring Ringtail final is almost out. The final release it scheduled for release on Apri...0 comment(s) | 
Install lamp with 1 command in Ubuntu 12.10, 13.04 Raring Ringtail & LinuxMint13 : Updated: 10/09/2012 :LAMP (Linux, Apache, MySQL and PHP) is an open source Web development platform ...0 comment(s) | - Howto: Upgrade to Ubuntu 13.04 Raring Ringtail from 12.04, 12,10 | Desktop & Server : Updated 05-04-2013: Ubuntu 13.04 Raring Ringtail will be released Soon, If you have ubuntu 12,10, 12...0 comment(s) |
Steganography- Hide Your Files Inside An Image in Linux : Nowadays, our personal computer is not only a work tool, it is also our private space where we sto...1 comment(s) | - Scan Your Home Network With Nmap : Who should read this article? Everyone who is interested in computer security and computer networkin...0 comment(s) |
- How to use Remote Desktop in Ubuntu : Sometimes, we need to access our computer from other locations when we’re not at home and such. This...0 comment(s) |
Recent Posts
Recent Posts
- Secure File from Removal in Linux and Unix
- How to Install Nginx on FreeBSD 9.x
- Create a Launcher in Ubuntu Using Bash
- Scan Your Home Network With Nmap
- Steganography- Hide Your Files Inside An Image in Linux
- Unix/Linux File Recognition. Did You Know?
- Migrate from MySQL to MariaDB in FreeBSD
- Connect Your Android Galaxy Tablet to Ubuntu via USB
- ElementaryOS Beta 1 and 2 Comparison and Review
- Introduction to the Linux Command Line
Recent Comments
Unixmen Archive
Unixmen Twitts
Ubuntu 12.10 ‘Quantal Quetzal’: Beta 2 Sneak Peek http://t.co/hd4LwDOy
Top 5 security Myths about Linux; and their realities http://t.co/zO1LgHST
Maintained by
Anblik
.
Pat L
| #
I tried it and it works with a regular zip file, but if you password-protect the .zip file it does NOT work.
SK
| #
Yes we can. What kind of help you need? We are doing outsourcing and technical support for Linux and Open source worldwide. To know more about the details visit here.
ClintB
| #
After install as above, run shell script /opt/Citrix/ICAClient/wfica.sh manually and note lib errors still occur. I had the x64 motif loaded but had to manually install the x86 too. Got that from http://rpmfind.net/linux/rpm2html/search.php?query=libXm.so.4 Even after that, I still had to do a “yum install alsa-lib.i686 alsa-lib.x86_64″ to resolve any additional libasound.so.2 errors. Once those two lib issues were resolved, Citix Web Interface launched apps fine by telling browser to open launch.ica using /opt/Citrix/ICAClient/wfica.sh. Good luck Ernesto!
AD
| #
I need some Help on Linux,can you guide me ?
Edson Carlos
| #
In debian no found. I need link download install in linux debian