demus/mod_security-rpm
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

merge into: demus:rawhide
Branches Tags
demus:rawhide
demus:copr-test
demus:copr
demus:main
demus:f40
demus:f39
demus:f36
demus:f37
demus:f38
demus:f35
demus:f34
demus:f33
demus:f32
demus:f31
demus:f30
demus:f29
demus:f28
demus:f27
demus:el6
demus:f26
demus:f25
demus:f24
demus:f23
demus:f22
demus:f21
demus:el5
demus:f19
demus:f20
demus:f17
demus:f18
demus:f16
demus:f15
demus:fc6
demus:f11
demus:f9
demus:f14
demus:f10
demus:f12
demus:el4
demus:f13
demus:f7
demus:f8
demus:mod_security-2_5_12-3_fc14
demus:mod_security-2_5_12-3_fc12
demus:mod_security-2_5_12-2_fc13
demus:mod_security-2_5_12-3_el5
demus:mod_security-2_5_12-2_fc12
demus:EL-6-start
demus:EL-6-split
demus:mod_security-2_5_12-2_fc14
demus:mod_security-2_5_12-3_el4
demus:mod_security-2_5_12-2_el5
demus:mod_security-2_5_12-2_el4
demus:mod_security-2_5_12-1_el4
demus:mod_security-2_5_12-1_el5
demus:mod_security-2_5_12-1_fc11
demus:mod_security-2_5_12-1_fc12
demus:mod_security-2_5_12-1_fc13
demus:F-13-start
demus:F-13-split
demus:mod_security-2_5_10-2_el5
demus:mod_security-2_5_10-2_el4
demus:mod_security-2_5_10-2_fc10
demus:mod_security-2_5_10-2_fc11
demus:mod_security-2_5_10-2_fc12
demus:mod_security-2_5_10-2_fc13
demus:mod_security-2_5_10-1_el4
demus:mod_security-2_5_10-1_el5
demus:mod_security-2_5_10-1_fc10
demus:mod_security-2_5_10-1_fc11
demus:mod_security-2_5_10-1_fc12
demus:mod_security-2_5_10-1_fc13
demus:mod_security-2_5_9-2_fc12
demus:F-12-start
demus:F-12-split
demus:mod_security-2_5_9-1_el4
demus:mod_security-2_5_9-1_el5
demus:mod_security-2_5_9-1_fc9
demus:mod_security-2_5_9-1_fc10
demus:mod_security-2_5_9-1_fc11
demus:F-11-start
demus:F-11-split
demus:mod_security-2_5_7-1_el4
demus:mod_security-2_5_7-1_el5
demus:mod_security-2_5_7-2_fc11
demus:mod_security-2_5_7-1_fc9
demus:mod_security-2_5_7-1_fc10
demus:mod_security-2_5_7-1_fc11
demus:mod_security-2_5_6-1_fc8
demus:mod_security-2_5_6-1_fc9
demus:mod_security-2_5_6-1_fc10
demus:F-10-start
demus:F-10-split
demus:mod_security-2_1_7-1_el4
demus:mod_security-2_1_7-1_el5
demus:mod_security-2_1_7-1_fc7
demus:mod_security-2_1_7-1_fc8
demus:mod_security-2_1_7-1_fc9
demus:F-9-start
demus:F-9-split
demus:mod_security-2_1_6-1_fc9
demus:mod_security-2_1_5-3_fc9
demus:mod_security-2_1_5-1_fc7
demus:mod_security-2_1_5-1_fc8
demus:mod_security-2_1_5-2_fc9
demus:mod_security-2_1_5-1_fc9
demus:mod_security-2_1_3-1_el4
demus:mod_security-2_1_3-1_el5
demus:mod_security-2_1_3-1_fc6
demus:mod_security-2_1_3-1_fc7
demus:mod_security-2_1_3-1_fc8
demus:F-8-start
demus:F-8-split
demus:mod_security-2_1_1-3_fc8
demus:mod_security-2_1_1-2_fc8
demus:mod_security-2_1_1-1_el4
demus:mod_security-2_1_1-1_fc8
demus:mod_security-2_1_1-1_fc7
demus:mod_security-2_1_1-1_el5
demus:mod_security-2_1_1-1_fc6
demus:mod_security-2_1_0-3_fc6
demus:EL-5-start
demus:EL-5-split
demus:mod_security-2_1_0-3_fc7
demus:F-7-start
demus:F-7-split
demus:mod_security-2_1_0-2_fc7
demus:mod_security-2_1_0-1_fc7
demus:mod_security-1_9_4-2_fc6
demus:FC-6-start
demus:FC-6-split
demus:mod_security-1_9_4-1_fc3
demus:EL-4-start
demus:EL-4-split
demus:mod_security-1_9_4-1_fc6
demus:mod_security-1_9_3-2_fc3
demus:mod_security-1_9_3-1_fc3
demus:mod_security-1_9_3-1_fc6
demus:mod_security-1_9_2-3_fc5
demus:FC-5-split
demus:mod_security-1_9_2-2_fc5
demus:mod_security-1_9_2-1_fc3
demus:mod_security-1_9_2-1_fc5
demus:mod_security-1_9_1-2_fc5
demus:mod_security-1_9_1-1_fc5
demus:mod_security-1_9_1-1_fc3
demus:mod_security-1_9-1_fc3
demus:mod_security-1_9-1_fc5
demus:mod_security-1_8_7-4_fc5
demus:mod_security-1_8_7-4_fc3
demus:FC-3-start
demus:FC-3-split
demus:mod_security-1_8_7-2_fc4
demus:FC-4-split
demus:mod_security-1_8_7-1
...
pull from: demus:f11
Branches Tags
demus:copr-test
demus:copr
demus:main
demus:f40
demus:rawhide
demus:f39
demus:f36
demus:f37
demus:f38
demus:f35
demus:f34
demus:f33
demus:f32
demus:f31
demus:f30
demus:f29
demus:f28
demus:f27
demus:el6
demus:f26
demus:f25
demus:f24
demus:f23
demus:f22
demus:f21
demus:el5
demus:f19
demus:f20
demus:f17
demus:f18
demus:f16
demus:f15
demus:fc6
demus:f11
demus:f9
demus:f14
demus:f10
demus:f12
demus:el4
demus:f13
demus:f7
demus:f8
demus:mod_security-2_5_12-3_fc14
demus:mod_security-2_5_12-3_fc12
demus:mod_security-2_5_12-2_fc13
demus:mod_security-2_5_12-3_el5
demus:mod_security-2_5_12-2_fc12
demus:EL-6-start
demus:EL-6-split
demus:mod_security-2_5_12-2_fc14
demus:mod_security-2_5_12-3_el4
demus:mod_security-2_5_12-2_el5
demus:mod_security-2_5_12-2_el4
demus:mod_security-2_5_12-1_el4
demus:mod_security-2_5_12-1_el5
demus:mod_security-2_5_12-1_fc11
demus:mod_security-2_5_12-1_fc12
demus:mod_security-2_5_12-1_fc13
demus:F-13-start
demus:F-13-split
demus:mod_security-2_5_10-2_el5
demus:mod_security-2_5_10-2_el4
demus:mod_security-2_5_10-2_fc10
demus:mod_security-2_5_10-2_fc11
demus:mod_security-2_5_10-2_fc12
demus:mod_security-2_5_10-2_fc13
demus:mod_security-2_5_10-1_el4
demus:mod_security-2_5_10-1_el5
demus:mod_security-2_5_10-1_fc10
demus:mod_security-2_5_10-1_fc11
demus:mod_security-2_5_10-1_fc12
demus:mod_security-2_5_10-1_fc13
demus:mod_security-2_5_9-2_fc12
demus:F-12-start
demus:F-12-split
demus:mod_security-2_5_9-1_el4
demus:mod_security-2_5_9-1_el5
demus:mod_security-2_5_9-1_fc9
demus:mod_security-2_5_9-1_fc10
demus:mod_security-2_5_9-1_fc11
demus:F-11-start
demus:F-11-split
demus:mod_security-2_5_7-1_el4
demus:mod_security-2_5_7-1_el5
demus:mod_security-2_5_7-2_fc11
demus:mod_security-2_5_7-1_fc9
demus:mod_security-2_5_7-1_fc10
demus:mod_security-2_5_7-1_fc11
demus:mod_security-2_5_6-1_fc8
demus:mod_security-2_5_6-1_fc9
demus:mod_security-2_5_6-1_fc10
demus:F-10-start
demus:F-10-split
demus:mod_security-2_1_7-1_el4
demus:mod_security-2_1_7-1_el5
demus:mod_security-2_1_7-1_fc7
demus:mod_security-2_1_7-1_fc8
demus:mod_security-2_1_7-1_fc9
demus:F-9-start
demus:F-9-split
demus:mod_security-2_1_6-1_fc9
demus:mod_security-2_1_5-3_fc9
demus:mod_security-2_1_5-1_fc7
demus:mod_security-2_1_5-1_fc8
demus:mod_security-2_1_5-2_fc9
demus:mod_security-2_1_5-1_fc9
demus:mod_security-2_1_3-1_el4
demus:mod_security-2_1_3-1_el5
demus:mod_security-2_1_3-1_fc6
demus:mod_security-2_1_3-1_fc7
demus:mod_security-2_1_3-1_fc8
demus:F-8-start
demus:F-8-split
demus:mod_security-2_1_1-3_fc8
demus:mod_security-2_1_1-2_fc8
demus:mod_security-2_1_1-1_el4
demus:mod_security-2_1_1-1_fc8
demus:mod_security-2_1_1-1_fc7
demus:mod_security-2_1_1-1_el5
demus:mod_security-2_1_1-1_fc6
demus:mod_security-2_1_0-3_fc6
demus:EL-5-start
demus:EL-5-split
demus:mod_security-2_1_0-3_fc7
demus:F-7-start
demus:F-7-split
demus:mod_security-2_1_0-2_fc7
demus:mod_security-2_1_0-1_fc7
demus:mod_security-1_9_4-2_fc6
demus:FC-6-start
demus:FC-6-split
demus:mod_security-1_9_4-1_fc3
demus:EL-4-start
demus:EL-4-split
demus:mod_security-1_9_4-1_fc6
demus:mod_security-1_9_3-2_fc3
demus:mod_security-1_9_3-1_fc3
demus:mod_security-1_9_3-1_fc6
demus:mod_security-1_9_2-3_fc5
demus:FC-5-split
demus:mod_security-1_9_2-2_fc5
demus:mod_security-1_9_2-1_fc3
demus:mod_security-1_9_2-1_fc5
demus:mod_security-1_9_1-2_fc5
demus:mod_security-1_9_1-1_fc5
demus:mod_security-1_9_1-1_fc3
demus:mod_security-1_9-1_fc3
demus:mod_security-1_9-1_fc5
demus:mod_security-1_8_7-4_fc5
demus:mod_security-1_8_7-4_fc3
demus:FC-3-start
demus:FC-3-split
demus:mod_security-1_8_7-2_fc4
demus:FC-4-split
demus:mod_security-1_8_7-1

7 Commits
rawhide ... f11

Author SHA1 Message Date
Fedora Release Engineering
5347e14a84 dist-git conversion 2010-07-29 03:34:50 +00:00
Michael Fleming
895679391d - Update to latest upstream release 
- SECURITY: Fix potential rules bypass and denial of service (bz#563576)
 2010-02-13 10:30:42 +00:00
Bill Nottingham
34260edfd8 Fix typo that causes a failure to update the common directory. (releng 
#2781)
 2009-11-26 01:38:58 +00:00
Michael Fleming
49d93fd22d - Fix rules and Apache configuration (bz#533124) 2009-11-07 00:58:42 +00:00
Michael Fleming
3153786890 - Upgrade to 2.5.10 (with Core Rules v2) 2009-11-06 09:40:06 +00:00
Michael Fleming
5b0f978a68 - Upgrade to 2.5.10 (with Core Rules v2) 2009-10-26 06:49:25 +00:00
Jesse Keating
d93a0edad8 Initialize branch F-11 for mod_security 2009-04-15 07:19:44 +00:00
6 changed files with 25 additions and 55 deletions
Show Stats Expand all files Collapse all files

1
.cvsignore
View File

@ -1 +0,0 @@
modsecurity-apache_2.5.9.tar.gz

1
.gitignore vendored Normal file
View File

@ -0,0 +1 @@
modsecurity-apache_2.5.12.tar.gz

21
Makefile
View File

@ -1,21 +0,0 @@
# Makefile for source rpm: mod_security
# $Id$
NAME := mod_security
SPECFILE = $(firstword $(wildcard *.spec))
define find-makefile-common
for d in common ../common ../../common ; do if [ -f $$d/Makefile.common ] ; then if [ -f $$d/CVS/Root -a -w $$/Makefile.common ] ; then cd $$d ; cvs -Q update ; fi ; echo "$$d/Makefile.common" ; break ; fi ; done
endef
MAKEFILE_COMMON := $(shell $(find-makefile-common))
ifeq ($(MAKEFILE_COMMON),)
# attept a checkout
define checkout-makefile-common
test -f CVS/Root && { cvs -Q -d $$(cat CVS/Root) checkout common && echo "common/Makefile.common" ; } || { echo "ERROR: I can't figure out how to checkout the 'common' module." ; exit -1 ; } >&2
endef
MAKEFILE_COMMON := $(shell $(checkout-makefile-common))
endif
include $(MAKEFILE_COMMON)

27
mod_security.conf
View File

@ -7,30 +7,7 @@ LoadModule unique_id_module modules/mod_unique_id.so
# This is the ModSecurity Core Rules Set.
# Basic configuration goes in here
Include modsecurity.d/modsecurity_crs_10_config.conf
# Protocol violation and anomalies.
Include modsecurity.d/modsecurity_crs_20_protocol_violations.conf
Include modsecurity.d/modsecurity_crs_21_protocol_anomalies.conf
# HTTP policy rules
Include modsecurity.d/modsecurity_crs_30_http_policy.conf
# Here comes the Bad Stuff...
Include modsecurity.d/modsecurity_crs_35_bad_robots.conf
Include modsecurity.d/modsecurity_crs_40_generic_attacks.conf
Include modsecurity.d/modsecurity_crs_45_trojans.conf
Include modsecurity.d/modsecurity_crs_50_outbound.conf
# Search engines and other crawlers. Only useful if you want to track
# Google / Yahoo et. al.
# Include modsecurity.d/modsecurity_crs_55_marketing.conf
# Put your local rules in here.
Include modsecurity.d/*.conf
Include modsecurity.d/base_rules/*.conf
Include modsecurity.d/modsecurity_localrules.conf
</IfModule>

28
mod_security.spec
View File

@ -1,6 +1,6 @@
Summary: Security module for the Apache HTTP Server
Name: mod_security
Version: 2.5.9
Version: 2.5.12
Release: 1%{?dist}
License: GPLv2
URL: http://www.modsecurity.org/
@ -31,9 +31,10 @@ make %{_smp_mflags} mlogc
rm -rf %{buildroot}
install -D -m755 apache2/.libs/mod_security2.so %{buildroot}/%{_libdir}/httpd/modules/mod_security2.so
install -D -m644 %{SOURCE1} %{buildroot}/%{_sysconfdir}/httpd/conf.d/mod_security.conf
install -d %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/optional_rules/
cp -r rules/*.conf %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/
cp -r rules/optional_rules/*.conf %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/optional_rules/
install -d %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/
install -D -m644 rules/*.conf %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/
cp -R rules/base_rules %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/
cp -R rules/optional_rules %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/
install -D -m644 %{SOURCE2} %{buildroot}/%{_sysconfdir}/httpd/modsecurity.d/modsecurity_localrules.conf
install -Dp tools/mlogc %{buildroot}/%{_bindir}/mlogc
install -D -m644 apache2/mlogc-src/mlogc-default.conf %{buildroot}/%{_sysconfdir}/mlogc.conf
@ -43,17 +44,30 @@ rm -rf %{buildroot}
%files
%defattr (-,root,root)
%doc CHANGES LICENSE README.* modsecurity* doc MODSECURITY_LICENSING_EXCEPTION
%doc rules/util CHANGES LICENSE README.* modsecurity* doc MODSECURITY_LICENSING_EXCEPTION
%{_libdir}/httpd/modules/mod_security2.so
%{_bindir}/mlogc
%config(noreplace) %{_sysconfdir}/mlogc.conf
%config(noreplace) %{_sysconfdir}/httpd/conf.d/mod_security.conf
%dir %{_sysconfdir}/httpd/modsecurity.d
%dir %{_sysconfdir}/httpd/modsecurity.d/optional_rules
%{_sysconfdir}/httpd/modsecurity.d/optional_rules
%{_sysconfdir}/httpd/modsecurity.d/base_rules
%config(noreplace) %{_sysconfdir}/httpd/modsecurity.d/*.conf
%config(noreplace) %{_sysconfdir}/httpd/modsecurity.d/optional_rules/*.conf
%changelog
* Sat Feb 13 2010 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.12-1
- Update to latest upstream release
- SECURITY: Fix potential rules bypass and denial of service (bz#563576)
* Fri Nov 6 2009 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.10-2
- Fix rules and Apache configuration (bz#533124)
* Thu Oct 8 2009 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.10-1
- Upgrade to 2.5.10 (with Core Rules v2)
* Sat Jul 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Thu Mar 12 2009 Michael Fleming <mfleming+rpm@thatfleminggent.com> 2.5.9-1
- Update to upstream release 2.5.9
- Fixes potential DoS' in multipart request and PDF XSS handling

2
sources
View File

@ -1 +1 @@
b7bf44a7e041b49b0da5043495660375 modsecurity-apache_2.5.9.tar.gz
f7d14b97bbe54ecb953125b0f9b87a24 modsecurity-apache_2.5.12.tar.gz