Code: Select all
Checking versions ...
Updating ASL Core: successful [PASS]
Updating ASL Kernel
Kernel: [PASS]
Updating APPINV to 201402101531: updated [PASS]
Updating CLAMAV to 201406031027: updated [PASS]
Updating GEOMAP to 201406031025: updated [PASS]
Updating map data
(this may take several minutes): updated [PASS]
Updating MODSEC to 201406030839: updated [PASS]
Antievasion Ruleset: updated [PASS]
Slow Denial of Service Protection: updated [PASS]
Exclude Ruleset: updated [PASS]
Anti-Malware Ruleset: updated [PASS]
Generic Attack Ruleset: updated [PASS]
Brute Force Protection Ruleset: updated [PASS]
Malicious Useragents Ruleset: updated [PASS]
Anti-Spam Ruleset: updated [PASS]
Rootkit Detection Ruleset: updated [PASS]
Reconnaissance Attacks Ruleset: updated [PASS]
Data Leak Prevention Ruleset: updated [PASS]
Just In Time Patches: updated [PASS]
Basic Malware Removal Ruleset: updated [PASS]
Malicious Output Detector: updated [PASS]
Web Malware Upload Scanner: updated [PASS]
-------------------------------------------------------------------------------
Errors were encountered:
L CODE SOURCE MESSAGE
- ---- ----------------------------- ------------------------------------------
2 9901 ASLCommon::cmd_system ERROR: '/usr/sbin/apachectl -t >/dev/null
2>&1 (1)'
2 9901 ASLCommon::cmd_exec ERROR: '(1) /usr/sbin/apachectl -t 2>&1 --
Syntax error on line 25 of /etc/httpd/mod
security.d/tortix_waf.conf:||SecReadStateL
imit takes one argument, maximum number of
threads in READ_BUSY state per ip address
'
2 601 c_modsec::apply_rules There is a problem with the apache config:
Syntax error on line 25 of /etc/httpd/mod
security.d/tortix_waf.conf:; SecReadStateL
imit takes one argument, maximum number of
threads in READ_BUSY state per ip address
2 601 c_modsec::apply_rules There is a problem with the apache config:
Rolling back to the previous update
3 600 c_modsec::apply_rules Errors occurred with Apache
re-ran aum -uf and it proceeded without error. Look forward to enhanced security with shared reputation reporting enabled!
PS: Nice touch that apache wasn't restarted when an error was detected