httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From zeno <>
Subject [users@httpd] mod_security: New apache module/http firewall
Date Tue, 10 Dec 2002 14:41:38 GMT

I'm forwarding this email from another list. I haven't tried it yet but looks promising.


From: Ivan Ristic <>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.2) Gecko/20021126
X-Accept-Language: en-us, en
MIME-Version: 1.0


I have written this Apache 1.x module that will most likely
be of interest to you. In essence it is an intrusion detection
and prevention software for Apache. It filters incoming requests
based on various criteria and either denies access or simply logs

The homepage of the module is:

For those who know Apache well, have a look at configuration
directive examples here:

The module is stable and works quite nice in all my tests. I
need input from people in order to gather requirements for
future versions. Regression tests are scheduled for the next
release, and so is a full list of attacks against which the
module is effective.

As an additional bonus, the module can also perform full
audit logging so it can very useful for compromise forensics.

Somewhere at the back of my mind I have plans for Java and
IIS versions of the same thing (I have to get to learn more
about the CodeSeeker project first, to make sure there is
no duplicated effort).

Ivan Ristic,

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message