From owner-freebsd-questions@FreeBSD.ORG Sat Jul 14 13:59:56 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id B815116A400 for ; Sat, 14 Jul 2007 13:59:56 +0000 (UTC) (envelope-from sonicy@otenet.gr) Received: from rosebud.otenet.gr (rosebud.otenet.gr [195.170.0.94]) by mx1.freebsd.org (Postfix) with ESMTP id 2B50913C428 for ; Sat, 14 Jul 2007 13:59:55 +0000 (UTC) (envelope-from sonicy@otenet.gr) Received: from atlantis.dyndns.org (athedsl-150060.home.otenet.gr [85.75.129.202]) by rosebud.otenet.gr (8.13.8/8.13.8/Debian-3) with ESMTP id l6EDxpFu015115; Sat, 14 Jul 2007 16:59:53 +0300 Message-ID: <4698D6D7.2000603@otenet.gr> Date: Sat, 14 Jul 2007 16:59:51 +0300 From: Manolis Kiagias User-Agent: Thunderbird 2.0.0.4 (X11/20070615) MIME-Version: 1.0 To: Bazy References: <46989F6C.9030802@goofy.celuloza.ro> In-Reply-To: <46989F6C.9030802@goofy.celuloza.ro> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: mod_security2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Jul 2007 13:59:56 -0000 Bazy wrote: > Hi guys, > > Do any of you use mod_security2? > > An article just came up on HowToForge about it, and I'm skeptic about installing it on my FreeBSD box. > Is mod_security2 ok? Will it load the CPU? Will it make apache22 slow? > > http://www.howtoforge.com/apache2_mod_security_debian_etch "ModSecurity is an Apache module that provides intrusion detection and prevention for web applications. It aims at shielding web applications from known and unknown attacks, such as SQL injection attacks, cross-site scripting, path traversal attacks, etc." > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > > I used to have mod_security (the original one, not 2) on my debian server. It works great, the increase in security outweighs the few more resources the server needs. Will it slow you down? That depends on your hardware and the amount of traffic you are receiving. Mine was (is) a small web server and there was no noticeable performance penalty from mod_security. And it does all that is promised in the article you found. In fact I was tempted to move to mod_security2 when I upgraded my apache server, but mod_security2 has different directives / rules and could not find a good tutorial at the time to convert my original rules.