Libmodsecurity is one component of the ModSecurity v3 project. Libmodsecurity is a complete rewrite of the ModSecurity platform.
You can find more details about the project here – https://github.com/SpiderLabs/ModSecurity/tree/libmodsecurity
We’ve created a “Copy & Paste” script for installing and testing libmodsec. The was tested under “Centos 7 Minimal”, provided that “Development Tools” was installed (yum group install “Development Tools”).
Install libmodsec –
yum install gcc-c++ flex bison yajl yajl-devel curl-devel curl GeoIP-devel doxygen zlib-devel cd /opt/ git clone https://github.com/SpiderLabs/ModSecurity cd ModSecurity git checkout libmodsecurity sh build.sh git submodule init git submodule update ./configure yum install ftp://195.220.108.108/linux/fedora/linux/updates/23/x86_64/b/bison-3.0.4-3.fc23.x86_64.rpm make make install
Install nginx connector –
# ensure env vars are set export MODSECURITY_INC="/opt/ModSecurity/headers/" export MODSECURITY_LIB="/opt/ModSecurity/src/.libs/" cd /opt/ git clone https://github.com/SpiderLabs/ModSecurity-nginx cd /opt/ModSecurity-nginx git checkout experimental cd /opt wget http://nginx.org/download/nginx-1.9.2.tar.gz tar -xvzf nginx-1.9.2.tar.gz cd /opt/nginx-1.9.2 /bin/cp -f /usr/sbin/nginx /usr/sbin/nginx_original_bkp ./configure --add-module=/opt/ModSecurity-nginx make make install
You can find our script and also many others at the project’s page – https://github.com/SpiderLabs/ModSecurity/wiki/Compilation-recipes
Tags: Libmodsecurity, modsec, modsecurity
Hi,
I tried, but it did not work. I have Vestacp installed with nginx-1.12.1 centos 7 . Do you have another way? thanks