owasp-modsecurity-crs-2.2.9-13.1.noarch.rpm


Advertisement

Description

owasp-modsecurity-crs - OWASP ModSecurity Common Rule Set (CRS)

Property Value
Distribution openSUSE Leap 42.3
Repository Security all
Package name owasp-modsecurity-crs
Package version 2.2.9
Package release 13.1
Package architecture noarch
Package type rpm
Installed size 390.64 KB
Download size 77.10 KB
Official Mirror widehat.opensuse.org
ModSecurity™ is a web application firewall engine that provides very little protection on its own. In order to become useful, ModSecurity™ must be configured with rules. In order to enable users to take full advantage of ModSecurity™ out of the box, Trustwave's SpiderLabs is providing a free certified rule set for ModSecurity™ 2.x. Unlike intrusion detection and prevention systems, which rely on signatures specific to known vulnerabilities, the Core Rules provide generic protection from unknown vulnerabilities often found in web applications, which are in most cases custom coded. The Core Rules are heavily commented to allow it to be used as a step-by-step deployment guide for ModSecurity™.
Core Rules Content
In order to provide generic web applications protection, the Core Rules use the following techniques:
HTTP Protection - detecting violations of the HTTP protocol and a locally defined usage policy.
Real-time Blacklist Lookups - utilizes 3rd Party IP Reputation
Web-based Malware Detection - identifies malicious web content by check against the Google Safe Browsing API.
HTTP Denial of Service Protections - defense against HTTP Flooding and Slow HTTP DoS Attacks.
Common Web Attacks Protection - detecting common web application security attack.
Automation Detection - Detecting bots, crawlers, scanners and other surface malicious activity.
Integration with AV Scanning for File Uploads - detects malicious files uploaded through the web application.
Tracking Sensitive Data - Tracks Credit Card usage and blocks leakages.
Trojan Protection - Detecting access to Trojans horses.
Identification of Application Defects - alerts on application misconfigurations.
Error Detection and Hiding - Disguising error messages sent by the server.

Alternatives

Package Version Architecture Repository
owasp-modsecurity-crs-2.2.9-3.15.noarch.rpm 2.2.9 noarch openSUSE Oss
owasp-modsecurity-crs - - -

Requires

Name Value
/usr/bin/env -
/usr/bin/lua -
/usr/bin/perl -
apache2-mod_security2 -

Provides

Name Value
config(owasp-modsecurity-crs) = 2.2.9-13.1
owasp-modsecurity-crs = 2.2.9
owasp-modsecurity-crs = 2.2.9-13.1

Download

Type URL
Binary Package owasp-modsecurity-crs-2.2.9-13.1.noarch.rpm
Source Package owasp-modsecurity-crs-2.2.9-13.1.src.rpm

Install Howto

  1. Add the Security repository:
    # zypper addrepo http://widehat.opensuse.org/opensuse/repositories/security/openSUSE_Leap_42.3/ security
  2. Install owasp-modsecurity-crs rpm package:
    # zypper install owasp-modsecurity-crs

Files

Path
/etc/apache2/conf.d/owasp-modsecurity-crs.conf
/etc/owasp-modsecurity-crs/modsecurity_crs_10_setup.conf
/etc/owasp-modsecurity-crs/rules.d/
/usr/share/doc/packages/owasp-modsecurity-crs/CHANGES
/usr/share/doc/packages/owasp-modsecurity-crs/LICENSE
/usr/share/doc/packages/owasp-modsecurity-crs/README.SUSE
/usr/share/doc/packages/owasp-modsecurity-crs/README.md
/usr/share/owasp-modsecurity-crs/modsecurity_crs_10_setup.conf.example
/usr/share/owasp-modsecurity-crs/lua/advanced_filter_converter.lua
/usr/share/owasp-modsecurity-crs/lua/appsensor_request_exception_enforce.lua
/usr/share/owasp-modsecurity-crs/lua/appsensor_request_exception_profile.lua
/usr/share/owasp-modsecurity-crs/lua/arachni_integration.lua
/usr/share/owasp-modsecurity-crs/lua/bayes_check_spam.lua
/usr/share/owasp-modsecurity-crs/lua/bayes_train_ham.lua
/usr/share/owasp-modsecurity-crs/lua/bayes_train_spam.lua
/usr/share/owasp-modsecurity-crs/lua/gather_ip_data.lua
/usr/share/owasp-modsecurity-crs/lua/osvdb.lua
/usr/share/owasp-modsecurity-crs/lua/profile_page_scripts.lua
/usr/share/owasp-modsecurity-crs/util/README
/usr/share/owasp-modsecurity-crs/util/av-scanning/runav.pl
/usr/share/owasp-modsecurity-crs/util/av-scanning/runAV/common.c
/usr/share/owasp-modsecurity-crs/util/av-scanning/runAV/common.h
/usr/share/owasp-modsecurity-crs/util/av-scanning/runAV/comp
/usr/share/owasp-modsecurity-crs/util/av-scanning/runAV/runAV-clamd.c
/usr/share/owasp-modsecurity-crs/util/av-scanning/runAV/runAV.c
/usr/share/owasp-modsecurity-crs/util/browser-tools/js-overrides.js
/usr/share/owasp-modsecurity-crs/util/honeypot-sensor/README.md
/usr/share/owasp-modsecurity-crs/util/honeypot-sensor/mlogc-honeypot-sensor.conf
/usr/share/owasp-modsecurity-crs/util/honeypot-sensor/modsecurity_crs_10_honeypot.conf
/usr/share/owasp-modsecurity-crs/util/regression-tests/INSTALL
/usr/share/owasp-modsecurity-crs/util/regression-tests/README
/usr/share/owasp-modsecurity-crs/util/regression-tests/modsecurity_crs_59_header_tagging.conf
/usr/share/owasp-modsecurity-crs/util/regression-tests/rulestest.conf
/usr/share/owasp-modsecurity-crs/util/regression-tests/rulestest.pl
/usr/share/owasp-modsecurity-crs/util/regression-tests/testserver.cgi
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_20_protocol_violations.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_21_protocol_anomalies.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_23_request_limits.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_30_http_policy.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_35_bad_robots.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_40_generic_attacks.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_41_sql_injection_attacks.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_41_xss_attacks.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/modsecurity_crs_50_outbound.tests
/usr/share/owasp-modsecurity-crs/util/regression-tests/tests/ruby.tests
/usr/share/owasp-modsecurity-crs/util/rule-management/id-range
/usr/share/owasp-modsecurity-crs/util/rule-management/remove-2.7-actions.pl
/usr/share/owasp-modsecurity-crs/util/rule-management/verify.rb
/usr/share/owasp-modsecurity-crs/util/virtual-patching/arachni2modsec.pl
/usr/share/owasp-modsecurity-crs/util/virtual-patching/zap2modsec.pl

Changelog

2017-07-24 - bwiedemann@suse.com
- sort conf file entries to fix build-compare (boo#1041090)
2015-03-08 - p.drouand@gmail.com
- Update to version 2.2.9
* Updated the /util directory structure
* fix 950901 - word boundary added
* modsecurity_35_bad_robots.data - gecko/25 blocks Firefox Android
https://github.com/SpiderLabs/owasp-modsecurity-crs/issues/157
- Fix SuSE > SUSE spelling
- Use download Url as source
- Do not explicitely depend on apache2; apache2-mod_security2
depends on it
- Remove redundant %clean section
- Do not copy INSTALL file into the package
- ChangeLog has been replaced with CHANGES in upstream
2012-09-19 - Thomas.Worm@DATEV.de
- Raised version to 2.2.6.
* Resolves bnc#779076
* Resolves CORERULES-87
2012-09-06 - Thomas.Worm@DATEV.de
- Package modification for factory submission:
* Changed services to localonly mode
* Added copyright information to spec file
2012-09-06 - Thomas.Worm@DATEV.de
- Added README.SuSE
2012-08-30 - Thomas.Worm@DATEV.de
- Initial package version 2.2.5

See Also

Package Description
owasp-modsecurity-crs-base_rules-2.2.9-13.1.noarch.rpm Base rules for OWASP ModSecurity CRS
owasp-modsecurity-crs-experimental_rules-2.2.9-13.1.noarch.rpm Experimental rules for OWASP ModSecurity CRS
owasp-modsecurity-crs-optional_rules-2.2.9-13.1.noarch.rpm Optional rules for OWASP ModSecurity CRS
owasp-modsecurity-crs-slr_rules-2.2.9-13.1.noarch.rpm SpiderLabs Research (SLR) rules for OWASP ModSecurity CRS
pam-google-authenticator-1.0-3.1.x86_64.rpm Two-Factor Authentication Module that uses Google Authenticator
pam-python-1.0.6-11.1.x86_64.rpm PAM module that allows PAM modules to be written in Python
pam_duo-1.9.18-1.1.x86_64.rpm A PAM module for duo authentication
pam_fido-u2f-0.0.0+git1420732548.8af92a2-2.1.x86_64.rpm The PAM module from the U2F toolset
pam_mobile_otp-0.6.2-1.1.x86_64.rpm Mobile OTP PAM Module
pam_oath-2.6.2-19.1.x86_64.rpm PAM module for pluggable login authentication for OATH
pam_schroedinger-0.2s-2.1.x86_64.rpm Uncertainty for brute forcers during login
pam_u2f-1.0.7-13.1.x86_64.rpm U2F authentication integration into PAM
pam_yubico-2.26-18.2.x86_64.rpm Yubico Pluggable Authentication Module (PAM)
passwordsafe-1.03~beta-1.9.x86_64.rpm A password database utility
pax-utils-1.2.2-116.1.x86_64.rpm Tools to Check ELF Files for Security Relevant Properties
Advertisement
Advertisement