Date: Fri, 9 Mar 2007 08:40:52 +0000 (GMT) From: Dominic Mitchell <dom@happygiraffe.net> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/110121: fix for www/mod_securty2 Message-ID: <20070309084052.75477B8C2@happygiraffe.net> Resent-Message-ID: <200703090900.l2990WHx088095@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 110121 >Category: ports >Synopsis: fix for www/mod_securty2 >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Fri Mar 09 09:00:29 GMT 2007 >Closed-Date: >Last-Modified: >Originator: Dominic Mitchell >Release: FreeBSD 6.2-PRERELEASE i386 >Organization: >Environment: System: FreeBSD gimli.happygiraffe.net 6.2-PRERELEASE FreeBSD 6.2-PRERELEASE #1: Mon Jan 15 09:00:41 GMT 2007 root@gimli.happygiraffe.net:/usr/obj/usr/src/sys/GIMLI i386 Apache 2.2 >Description: The last update to www/mod_security2 had a few problems, including a couple of missing files. NB: This patch supercedes PR110005, as it hqas updated versions of the files. >How-To-Repeat: cd /usr/ports/www/mod_security2 && sudo make install >Fix: Here's the patch. NB: It adds two files. diff -ruN /usr/ports/www/mod_security2/Makefile mod_security2/Makefile --- /usr/ports/www/mod_security2/Makefile Tue Mar 6 07:37:20 2007 +++ mod_security2/Makefile Fri Mar 9 07:52:55 2007 @@ -64,7 +64,7 @@ @${REINPLACE_CMD} -e '\ s|SecRuleEngine On|SecRuleEngine DetectionOnly|; \ s|SecAuditLog.*logs/modsec_audit.log|SecAuditLog /var/log/httpd-modsec2_audit.log|; \ - s|SecDebugLog.*logs/modsec_debug.log|SecAuditLog /var/log/httpd-modsec2_debug.log|; \ + s|SecDebugLog.*logs/modsec_debug.log|SecDebugLog /var/log/httpd-modsec2_debug.log|; \ s|SecServerSignature "Apache/2.2.0 (Fedora)"|SecServerSignature "Apache/${APACHE_VERSION:C/[0-9]/\0./g}x (${OPSYS})"|; \ ' ${WRKSRCTOP}/rules/modsecurity_crs_10_config.conf diff -ruN /usr/ports/www/mod_security2/files/mod_security.conf.in mod_security2/files/mod_security.conf.in --- /usr/ports/www/mod_security2/files/mod_security.conf.in Thu Jan 1 01:00:00 1970 +++ mod_security2/files/mod_security.conf.in Fri Mar 9 07:53:13 2007 @@ -0,0 +1,3 @@ +<IfModule mod_security2.c> + Include %%APACHEETCDIR%%/Includes/mod_security2/*.conf +</IfModule> diff -ruN /usr/ports/www/mod_security2/files/pkg-message-rules.in mod_security2/files/pkg-message-rules.in --- /usr/ports/www/mod_security2/files/pkg-message-rules.in Thu Jan 1 01:00:00 1970 +++ mod_security2/files/pkg-message-rules.in Fri Mar 9 07:52:31 2007 @@ -0,0 +1,10 @@ + +The modsecurity 2 Core Rules have been installed in + + %%PREFIX%%/%%APACHEETCDIR%%/Includes/mod_security2/ + +and run in "DetectionOnly" mode as not to disturb operatings. + +Please read http://www.modsecurity.org/projects/rules/index.html + +Logging is done to /var/log/httpd-modsec-*.log >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070309084052.75477B8C2>