ModSecurity Open Source Web Application Firewall
ModSecurity(TM) is an open source intrusion detection and prevention
engine for web applications (or a web application firewall). Operating
as an Apache Web server module or standalone, the purpose of
ModSecurity is to increase web application security, protecting web
applications from known and unknown attacks.
- Developed at Apache:Modules
- Sources inherited from project openSUSE:Factory
-
1
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Leap:15.0:Staging:FactoryCandidates/apache2-mod_security2 && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
README-SUSE-mod_security2.txt | 0000000321 321 Bytes | |
SpiderLabs-owasp-modsecurity-crs-2.2.9-5-gebe8790. |
0000280011 273 KB | |
apache2-mod_security2-no_rpath.diff | 0000003136 3.06 KB | |
apache2-mod_security2.changes | 0000017911 17.5 KB | |
apache2-mod_security2.spec | 0000004902 4.79 KB | |
apache2-mod_security2_tests_conf.patch | 0000000790 790 Bytes | |
empty.conf | 0000000189 189 Bytes | |
mod_security2.conf | 0000010766 10.5 KB | |
modsecurity-2.9.3-input_filtering_errors.patch | 0000003589 3.5 KB | |
modsecurity-2.9.3.tar.gz | 0004307670 4.11 MB | |
modsecurity-fixes.patch | 0000001133 1.11 KB |
Revision 27 (latest revision is 29)
Dominique Leuenberger (dimstar_suse)
accepted
request 874491
from
Petr Gajdos (pgajdos)
(revision 27)
- version update to 2.9.3 * Enable optimization for large stream input by default on IIS [Issue #1299 - @victorhora, @zimmerle] * Allow 0 length JSON requests. [Issue #1822 - @allanbomsft, @zimmerle, @victorhora, @marcstern] * Include unanmed JSON values in unnamed ARGS [Issue #1577, #1576 - @marcstern, @victorhora, @zimmerle] * Fix buffer size for utf8toUnicode transformation [Issue #1208 - @katef, @victorhora] * Fix sanitizing JSON request bodies in native audit log format [p0pr0ck5, @victorhora] * IIS: Update Wix installer to bundle a supported CRS version (3.0) [@victorhora, @zimmerle] * IIS: Update dependencies for Windows build [Issue #1848 - @victorhora, @hsluoyz] * IIS: Set SecStreamInBodyInspection by default on IIS builds (#1299) [Issue #1299 - @victorhora] * IIS: Update modsecurity.conf [Issue #788 - @victorhora, @brianclark] * Add sanity check for a couple malloc() and make code more resilient [Issue #979 - @dogbert2, @victorhora, @zimmerl] * Fix NetBSD build by renaming the hmac function to avoid conflicts [Issue #1241 - @victorhora, @joerg, @sevan] * IIS: Windows build, fix duplicate YAJL dir in script [Issue #1612 - @allanbomsft, @victorhora] * IIS: Remove body prebuffering due to no locking in modsecProcessRequest [Issue #1917 - @allanbomsft, @victorhora] * Fix mpm-itk / mod_ruid2 compatibility [Issue #712 - @ju5t , @derhansen, @meatlayer, @victorhora] * Code cosmetics: checks if actionset is not null before use it
Comments 1
Could you please upgrade the version to the latest one, 2.9.2-1? Thank you very much!