New: My first installation with Atomicorp Modsecurity

Community support forums for the free/delayed modsecurity rules feed. There is no such thing as a bad question here as long as it pertains to using the delayed modsecurity rules feed. Newbies feel free to get help getting started or asking questions that may be obvious.
hbhb
New Forum User
New Forum User
Posts: 1
Joined: Sun Sep 01, 2013 2:51 am
Location: Catc

New: My first installation with Atomicorp Modsecurity

Unread post by hbhb »

Hi,

I am new to Atomicorp modsecurity. I found this site on web forums while I was searching for ways to have a better server security for my shared host cPanel server which I often gets users telling me their Wordpress & Joomla got hacked. I don't know if I can get the right solution to this with Atomicorp mod_security?

Anyway, since I am new to try, I follow the download instruction from:
https://www6.atomicorp.com/
[root@xx ~]# wget -q -O - http://www.atomicorp.com/installers/atomic | sh

Atomic Free Unsupported Archive installer, version 2.0.9

BY INSTALLING THIS SOFTWARE AND BY USING ANY AND ALL SOFTWARE
PROVIDED BY ATOMICORP LIMITED YOU ACKNOWLEDGE AND AGREE:

THIS SOFTWARE AND ALL SOFTWARE PROVIDED IN THIS REPOSITORY IS
PROVIDED BY ATOMICORP LIMITED AS IS, IS UNSUPPORTED AND ANY
EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL ATOMICORP LIMITED, THE
COPYRIGHT OWNER OR ANY CONTRIBUTOR TO ANY AND ALL SOFTWARE PROVIDED
BY OR PUBLISHED IN THIS REPOSITORY BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
OF THE POSSIBILITY OF SUCH DAMAGE.

====================================================================
THIS SOFTWARE IS UNSUPPORTED. IF YOU REQUIRE SUPPORTED SOFWARE
PLEASE SEE THE URL BELOW TO PURCHASE A NUCLEUS LICENSE AND DO NOT
PROCEED WITH INSTALLING THIS PACKAGE.
====================================================================

For supported software packages please purchase a Nucleus license:
https://www.atomicorp.com/products/nucleus.html
All atomic repository rpms are UNSUPPORTED.
Do you agree to these terms? (yes/no) [Default: yes]
rpmdb: Lock table is out of available locks
error: cannot open Packages index using db3 - Cannot allocate memory (12)
error: cannot open Packages database in /var/lib/rpm

Configuring the [atomic] yum archive for this system

Installing the Atomic GPG key: OK
rpmdb: Lock table is out of available locks
error: cannot open Packages index using db3 - Cannot allocate memory (12)
error: cannot open Packages database in /var/lib/rpm
Downloading atomic-release-1.0-16.el5.art.noarch.rpm: OK

The Atomic Rocket Turtle archive has now been installed and configured for your sy stem
The following channels are available:
atomic - [ACTIVATED] - contains the stable tree of ART packages
atomic-testing - [DISABLED] - contains the testing tree of ART packages
atomic-bleeding - [DISABLED] - contains the development tree of ART packages


[root@xx ~]#
I don't know if I am doing this correctly since I read there was an error message above:
error: cannot open Packages index using db3 - Cannot allocate memory (12)
error: cannot open Packages database in /var/lib/rpm

Currently my cpanel server already has mod_security installed and is using the default rules.

What do I do next since it says it's Activated? I see no changes in my default rules. Anything else I should do?
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4149
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: New: My first installation with Atomicorp Modsecurity

Unread post by mikeshinn »

Thanks for the question. What you've installed is our atomicorp yum repository. That allows your system to install software from our repositories. It wont install anything else. So you still need to install the rules.

To install modsecurity, and our rules, you can do this in one of three ways:

1) Easiest and most powerful

Get a license for an install ASL, installation instructions are available at the URL below, or you can contact support at: support@atomicorp.com for assistance.

https://www.atomicorp.com/wiki/index.ph ... stallation

And you can get a license from here:

https://www.atomicorp.com/amember/signup.php

This will install our real time rules, advanced firewall, advanced intrusion prevention system, rule management system, security console, malware upload and realtime protection system, auto-healing system, vulnerability scanner and autofix system, and our advanced full system security suite:

https://www.atomicorp.com/products/asl.html

2) Do it yourself and just install the rules

You'll need to get a license to our real time rules, you can do that at the URL below:

https://www.atomicorp.com/products/modsecurity.html

Then follow these instructions to set up the rules on your system:

https://www.atomicorp.com/wiki/index.ph ... rity_Rules

3) Do it yourself with the delayed rules

Use the delayed free rules, which are 90 days older than the real time rules. These rules are unsupported and do not include the virtual patches, anti-spam rules or advanced rules:

https://www.atomicorp.com/wiki/index.ph ... rity_Rules

Please let us know if you have any questions.
Post Reply