Atomicorp Repo: Mod_Security 2.7.1 rule compatibilitiy
Posted: Tue Nov 27, 2012 1:00 am
It seems that the release of mod_security 2.7.1 doesn't quite coincide with compatible rules in the delayed feed. Through a normal yum update, my boxes updated mod_security from the atomicorp free RPMs Repo, then ran into rule compatibility issues. I then updated to the latest delayed feed rules (modsec-201209270654) and ended up with the following error:
This error refers to: id:343013 which is also found in 10_asl_rules.conf on line 90. I then disabled 15_asl_paranoid_rules.conf and was able to get configtest to pass, but still had a number of warnings:
Even if the warnings aren't fixed up until a later delayed ruleset release, that seems acceptable, but it would be nice to get the error repaired in the next rules update so as to at least make the Atomicorp repo compatible with the delayed rules feed.
Thanks!
Code: Select all
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/10_asl_antimalware.conf:30).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/10_asl_rules.conf:36).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/11_asl_data_loss.conf:31).
Syntax error on line 38 of /etc/httpd/modsecurity.d/15_asl_paranoid_rules.conf:
ModSecurity: Found another rule with the same id
Code: Select all
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/10_asl_antimalware.conf:30).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/10_asl_rules.conf:36).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/11_asl_data_loss.conf:31).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/20_asl_useragents.conf:34).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/30_asl_antispam.conf:33).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/50_asl_rootkits.conf:41).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/60_asl_recons.conf:37).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/61_asl_recons_dlp.conf:37).
ModSecurity: WARNING Using transformations in SecDefaultAction is deprecated (/etc/httpd/modsecurity.d/99_asl_jitp.conf:45).
Syntax OK
Thanks!