| Current File : //usr/local/apps/apache2/etc/conf.d/modsec2.conf.PREVIOUS |
## DO NOT EDIT. AUTOMATICALLY GENERATED BY WEBUZO
#################
# Modsec Module #
#################
LoadModule unique_id_module modules/mod_unique_id.so
LoadModule security2_module modules/mod_security2.so
<IfModule security2_module>
SecAuditLog /usr/local/apps/apache2/logs/modsec_audit.log
SecDebugLog /usr/local/apps/apache2/logs/modsec_debug.log
SecDebugLogLevel 0
SecDefaultAction "phase:2,deny,log,status:406"
SecRequestBodyLimitAction ProcessPartial
<IfModule ruid2_module>
SecAuditLogStorageDir /usr/local/apps/apache2/logs/modsec_audit
SecAuditLogType Concurrent
</IfModule>
Include /usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/modsec2.user.conf
## ModSecurity fixed global configuration
SecDataDir "/var/webuzo-data/secdatadir"
## ModSecurity global configuration
SecAuditEngine RelevantOnly
SecRuleEngine On
## ModSecurity configuration file includes:
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/crs-setup.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-901-INITIALIZATION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-903.9005-CPANEL-EXCLUSION-RULES.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-903.9006-XENFORO-EXCLUSION-RULES.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-905-COMMON-EXCEPTIONS.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-910-IP-REPUTATION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-912-DOS-PROTECTION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-913-SCANNER-DETECTION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-921-PROTOCOL-ATTACK.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-922-MULTIPART-ATTACK.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-950-DATA-LEAKAGES.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-980-CORRELATION.conf"
Include "/usr/local/apps/apache2/etc/conf.d/modsec_vendor_configs/OWASP3/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf"
##ModSecurity disabled rules:
SecRule REQUEST_URI "@beginsWith /webmail" "id:100001,phase:1,pass,nolog,ctl:ruleEngine=off"
SecRule HTTP_HOST "@beginsWith mail." "id:100002,phase:1,pass,nolog,ctl:ruleEngine=off"
</IfModule>