httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Julien Gerhards <jgerha...@r-advertising.com>
Subject [users@httpd] mod_security
Date Wed, 06 May 2009 10:17:52 GMT
Hi,

I try to use mod_security but it doesn t filter anything !
My vhostconf :

<VirtualHost *:80>
    ServerSignature Off
    ServerName cache-ext
    ErrorLog logs/cache-ext_error.log
    CustomLog logs/cache-ext_access.log combined
   <IfModule mod_proxy.c>
      <LocationMatch "^[^/]">
         Deny from all
      </LocationMatch>
      <IfModule mod_rewrite.c>
         RewriteEngine On
#        RewriteCond %{REQUEST_URI} ^/img=(.+)$
         RewriteRule ^/img=(.+)$ $1 [L,P]
         RewriteLog /var/log/RewriteLog.log
         RewriteRule ^[/img=](.+)$ - [F]
         </IfModule>
      AllowEncodedSlashes on
      ProxyRequests On
      ProxyVia On
      <IfModule mod_disk_cache.c>
         CacheEnable disk /
         CacheRoot "/var/cache/mod_proxy"
      </IfModule>
      <IfModule mod_mem_cache.c>
         CacheEnable mem /
         MCacheMaxObjectSize 1024000
         MCacheSize 102400
      </IfModule>
      <proxy *>
    #     deny from all
      </proxy>
      <proxymatch ^/img=(.+)$>
         allow from all
     </proxymatch>
     <IfModule mod_security.c>
        SecFilterEngine On
        SecFilterDefaultAction "deny,log,status:403"
        SecFilterDebugLevel 9
        SecFilterSelective  macbidouille.com
        SecAuditLog logs/audit_log
     </IfModule>
</IfModule>
</VirtualHost>

It should respond me an 403 error for every URL with a macbidouille.com in the URL.

Any ideas?

Mime
View raw message