Date: Fri, 9 Mar 2007 08:40:52 +0000 (GMT) From: Dominic Mitchell <dom@happygiraffe.net> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/110121: fix for www/mod_securty2 Message-ID: <20070309084052.75477B8C2@happygiraffe.net> Resent-Message-ID: <200703090900.l2990WHx088095@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 110121
>Category: ports
>Synopsis: fix for www/mod_securty2
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: maintainer-update
>Submitter-Id: current-users
>Arrival-Date: Fri Mar 09 09:00:29 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator: Dominic Mitchell
>Release: FreeBSD 6.2-PRERELEASE i386
>Organization:
>Environment:
System: FreeBSD gimli.happygiraffe.net 6.2-PRERELEASE FreeBSD 6.2-PRERELEASE #1: Mon Jan 15 09:00:41 GMT 2007 root@gimli.happygiraffe.net:/usr/obj/usr/src/sys/GIMLI i386
Apache 2.2
>Description:
The last update to www/mod_security2 had a few
problems, including a couple of missing files.
NB: This patch supercedes PR110005, as it hqas updated versions
of the files.
>How-To-Repeat:
cd /usr/ports/www/mod_security2 && sudo make install
>Fix:
Here's the patch. NB: It adds two files.
diff -ruN /usr/ports/www/mod_security2/Makefile mod_security2/Makefile
--- /usr/ports/www/mod_security2/Makefile Tue Mar 6 07:37:20 2007
+++ mod_security2/Makefile Fri Mar 9 07:52:55 2007
@@ -64,7 +64,7 @@
@${REINPLACE_CMD} -e '\
s|SecRuleEngine On|SecRuleEngine DetectionOnly|; \
s|SecAuditLog.*logs/modsec_audit.log|SecAuditLog /var/log/httpd-modsec2_audit.log|; \
- s|SecDebugLog.*logs/modsec_debug.log|SecAuditLog /var/log/httpd-modsec2_debug.log|; \
+ s|SecDebugLog.*logs/modsec_debug.log|SecDebugLog /var/log/httpd-modsec2_debug.log|; \
s|SecServerSignature "Apache/2.2.0 (Fedora)"|SecServerSignature "Apache/${APACHE_VERSION:C/[0-9]/\0./g}x (${OPSYS})"|; \
' ${WRKSRCTOP}/rules/modsecurity_crs_10_config.conf
diff -ruN /usr/ports/www/mod_security2/files/mod_security.conf.in mod_security2/files/mod_security.conf.in
--- /usr/ports/www/mod_security2/files/mod_security.conf.in Thu Jan 1 01:00:00 1970
+++ mod_security2/files/mod_security.conf.in Fri Mar 9 07:53:13 2007
@@ -0,0 +1,3 @@
+<IfModule mod_security2.c>
+ Include %%APACHEETCDIR%%/Includes/mod_security2/*.conf
+</IfModule>
diff -ruN /usr/ports/www/mod_security2/files/pkg-message-rules.in mod_security2/files/pkg-message-rules.in
--- /usr/ports/www/mod_security2/files/pkg-message-rules.in Thu Jan 1 01:00:00 1970
+++ mod_security2/files/pkg-message-rules.in Fri Mar 9 07:52:31 2007
@@ -0,0 +1,10 @@
+
+The modsecurity 2 Core Rules have been installed in
+
+ %%PREFIX%%/%%APACHEETCDIR%%/Includes/mod_security2/
+
+and run in "DetectionOnly" mode as not to disturb operatings.
+
+Please read http://www.modsecurity.org/projects/rules/index.html
+
+Logging is done to /var/log/httpd-modsec-*.log
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070309084052.75477B8C2>