'Re: [mod-security-users] Error Enabling Rules'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       mod-security-users
Subject:    Re: [mod-security-users] Error Enabling Rules
From:       Christian Folini <christian.folini () netnea ! com>
Date:       2017-05-18 4:10:08
Message-ID: 20170518041008.bgc53iyfdbvrnsjz () leander
[Download RAW message or body]

Hello Liam,

It seems nobody wants to tackle this. Possibly because we have moved
to the 3.0 release. New debian packages exist btw, they are compatbile
with your setup. Plus a bit of tweaking with the include paths possibly.

The problems reminds me of this thread:

https://ubuntuforums.org/showthread.php?t=1842271

Good luck!

Christian

On Mon, May 15, 2017 at 11:19:33AM +0200, lannoun@runbox.com wrote:
> Hi,
> 
> While installing Apache + modsecurity I have eable the core rules 
> shipped in ubuntu's repositoires.
> 
> I'm using Ubuntu 16.10 with Apache
> 
> apache2 -v
> Server version: Apache/2.4.18 (Ubuntu)
> Server built:   2017-05-05T16:32:00
> 
> This is the stabled and supported version on this LTS.
> 
> But I got this error
> 
> apache2[1473]: apache2: Syntax error on line 152 of 
> /etc/apache2/apache2.conf: Syntax error on line 12 of 
> /etc/apache2/mods-enabled/security2.conf: Syntax error on line 301 of 
> /usr/share/modsecurity-crs/activated_rules/modsecurity_40_generic_attacks.data: 
> /usr/share/modsecurity-crs/activated_rules/modsecurity_40_generic_attacks.data:338: 
> <input> was not 
> closed.\n/usr/share/modsecurity-crs/activated_rules/modsecurity_40_generic_attacks.data:301: 
> <![cdata[> was not closed.
> 
> 
> So there is a syntax error in the rules, right?
> 
> I have checked some github issues showing that this is due to an not 
> updated version of Apache. But I have tried to install the latest 
> version pf apache 2.4.25-3 but I had the same errors.
> 
> 
> Any suggestion will be appreciated
> 
> Thanks you
> 
> Liam
> 
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> mod-security-users mailing list
> mod-security-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/mod-security-users
> Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
> http://www.modsecurity.org/projects/commercial/rules/
> http://www.modsecurity.org/projects/commercial/support/

-- 
https://www.feistyduck.com/training/modsecurity-training-course
mailto:christian.folini@netnea.com
twitter: @ChrFolini

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
mod-security-users mailing list
mod-security-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-security-users
Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs:
http://www.modsecurity.org/projects/commercial/rules/
http://www.modsecurity.org/projects/commercial/support/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic