Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:csbuild:DBA
dba-apache2-mod_security-crs-228
dba-apache2-mod_security-crs-228.spec
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File dba-apache2-mod_security-crs-228.spec of Package dba-apache2-mod_security-crs-228
%define version 2.2.8 %define vers 228 %define real_name modsecurity-crs %define prefix /DBA/apache/modsecurity-crs/%{version} Name: dba-apache2-mod_security-crs-%{vers} Summary: OWASP ModSecurity Core Rule Set Project V2.2.8 Version: %{version} Release: 1 License: GPL Url: https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project Source0: http://sourceforge.net/projects/mod-security/files/modsecurity-crs/0-CURRENT/modsecurity-crs_%{version}.tar.gz Source1: owasp-modsecurity-rpmlintrc Group: Productivity/Networking/Web/Servers BuildArch: noarch BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) %if 0%{?suse_version} >= 1110 BuildRequires: -post-build-checks %endif #!BuildIgnore: dba-openssl-098o dba-openssl-098r dba-openssl-098x dba-openssl-101c %description ModSecurity. is a web application firewall engine that provides very little protection on its own. In order to become useful, ModSecurity. must be configured with rules. In order to enable users to take full advantage of ModSecurity. out of the box, Trustwave's SpiderLabs is providing a free certified rule set for ModSecurity. 2.x. Unlike intrusion detection and prevention systems, which rely on signatures specific to known vulnerabilities, the Core Rules provide generic protection from unknown vulnerabilities often found in web applications, which are in most cases custom coded. The Core Rules are heavily commented to allow it to be used as a step-by-step deployment guide for ModSecurity.. Core Rules Content In order to provide generic web applications protection, the Core Rules use the following techniques: HTTP Protection - detecting violations of the HTTP protocol and a locally defined usage policy. Real-time Blacklist Lookups - utilizes 3rd Party IP Reputation Web-based Malware Detection - identifies malicious web content by check against the Google Safe Browsing API. HTTP Denial of Service Protections - defense against HTTP Flooding and Slow HTTP DoS Attacks. Common Web Attacks Protection - detecting common web application security attack. Automation Detection - Detecting bots, crawlers, scanners and other surface malicious activity. Integration with AV Scanning for File Uploads - detects malicious files uploaded through the web application. Tracking Sensitive Data - Tracks Credit Card usage and blocks leakages. Trojan Protection - Detecting access to Trojans horses. Identification of Application Defects - alerts on application misconfigurations. Error Detection and Hiding - Disguising error messages sent by the server. %package util Summary: Utility scripts to manage rules Group: Productivity/Networking/Web/Servers Requires: %{name} = %{version} %description util Utility scripts to manage rules %prep %setup -q -n %{real_name}_%{version} %build %install %{__mkdir_p} %{buildroot}%{prefix} ### Fix dependency on /opt/local/bin/perl %{__perl} -pi -e 's%^#!/opt/local/bin/perl%#!/usr/bin/perl%g' `find -name "*.pl"` find . -type f -name "*.orig" -exec rm -f {} \; # do not install lua %{__cp} -av modsecurity_crs_10_setup.conf.example activated_rules base_rules experimental_rules optional_rules slr_rules util %{buildroot}%{prefix}/ %{__rm} -rf %{buildroot}%{prefix}/util/av-scanning/runAV %post cd %{prefix}/.. %{__rm} -f 2.2.latest %{__ln_s} -f %{version} 2.2.latest %clean %{__rm} -rf %{buildroot}; %files util %defattr(-,root,root) %dir %{prefix}/util %{prefix}/util %files %defattr(-,root,root,-) %doc CHANGES INSTALL LICENSE %dir %{prefix} %{prefix}/* %exclude %{prefix}/util %changelog * Tue Jul 9 2013 Holger Manthey <holger.manthey@bertelsmann.de> - initial build
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor