Categories

2
Accuweb Boasting
 11
Addon Services
 8
Affiliate Questions
 18
ASP Components, Scripts
 47
Billing & Accounts
 28
CDN Hosting
 24
Client Area WHMCS
 11
Comparisons of Hosting Plans
 34
Complete FTP Guide
 206
cPanel & WHM Tutorials
 1
CS-Cart
 24
Dedicated Servers
 16
DirectAdmin Control Panel
 39
Domains FAQs
 13
Email Accounts
 43
Email Client Settings
 24
Forex VPS
 4
Form Downloads
 47
HELM Control Panel
 77
Linux Shared Hosting
 267
Linux VPS Hosting
 13
MailEnable Tutorials
 9
Miscellaneous
 38
Nameservers List
 4
OnApp Clouds
 90
Plesk Tutorials
 1
Sample Scripts
 2
Scripting/Programming Errors
 69
Shared Hosting Pre-Sales
 58
SmarterTools Products
 2
SolusVM Control Panel
 30
SSL Certificates
 18
Support Options
 48
Tools and Tips
 132
Video Tutorials
 15
Website Publishing
 71
WebsitePanel Tutorials
 38
Windows Cloud VPS
 77
Windows Shared Hosting
 415
Windows VPS Hosting
 122
Windows VPS Pre-Sales
 102
WordPress Tutorials
 4
Zabbix

  Categories

  Support

  My Support Tickets   Announcements   Knowledgebase   Downloads   Network Status   Open Ticket

How to install mod security on Centos 7.x with apache? Print

  • 0

Mod_Security is an open-source web application firewall. It monitors the incoming web request to your web server in real-time. It protects your web application against various attacks such as session hijacking, SQL injection, cross-site scripting, etc. on web applications using the added rulesets. It supports by the web-browsers such as Apache, Nginx, and IIS.

Please refer to the following steps to install mod security on CentOS 7.x

  1. At first, run the below command to update the software repository. 

    sudo yum update -y
  2. Install mod security using the below command.

    sudo yum install mod_security -y
  3. You can check the mod security version with the below command. 

    sudo yum info mod_security

Configure ModSecurity

After the installation, configure the mod security to detect and log suspicious activity.

  1. We will copy the default ModSecurity config file to a new file.

    sudo cp /etc/modsecurity/modsecurity.conf-recommended /etc/modsecurity/modsecurity.conf
  2. Open the ModSecurity.conf file in your favorite editor.

    vi /etc/modsecurity/modsecurity.conf
  3. At the top of the file, locate SecRuleEngine DetectionOnly. Change the DetectionOnly to On.

    DetectionOnly On
  4. Save your changes to the ModSecurity.conf file.

  5. Restart the apache service on your server.

    systemctl restart apache2
Get Linux VPS

How to Download OWASP Core Rule Set

We can download the latest ModSecurity core ruleset (CRS) from the Open Web Application Security Project (OWASP) at CoreRuleSet.org to ensure that we have the latest ModSecurity rules.

  1. Run the below command to install Git.

    sudo yum install git
  2. Download the CRS copy from git using the below command.

    git clone https://github.com/SpiderLabs/owasp-modsecurity-crs.git
  3. Open it with the cd command.

    cd owasp-modsecurity-crs
  4. Move the CRS file to mod security and move the rules as well.

    sudo mv crs-setup.conf.example /etc/modsecurity/crs-setup.conf
    sudo mv rules/ /etc/modsecurity
  5. Open the security2.conf file and verify that it is set to load mod_security rules.

    sudo nano /etc/apache2/mods-enabled/security2.conf
  6. Below two lines should remain uncommented.

    IncludeOptional /etc/modsecurity/*.conf
    
Include /etc/modsecurity/rules/*.conf
  7. Restart the apache service with the below command.

    sudo systemctl restart httpd.service
Get Linux VPS

Was this answer helpful?

Related Articles

Fix Exim error-exim dead but subsys locked Problem Statement php mail scripts were not working in Linux VPS. Error Message exim dead but... How to sync time using NTP in Ubuntu server? Linux server users might have noticed that after adjusting the system clock to the correct time,... How to Install NodeBB on a CentOS VPS? NodeBB is an open source and powerful forum software based on the Node.js. It is very easy to... How to transfer cPanel accounts from Shared Hosting to VPS/Dedicated Server manually? cPanel facilitates you to restore full cPanel account along with websites, email accounts, MySQL... How to Move Accounts From One cPanel Server To Another cPanel server? cPanel facilitates you with the built-in Transfer Tools which allow you to migrate your existing...
« Back
Sign up for a newsletter
Web Hosting
Application Hosting
Cloud Hosting
WordPress Hosting
Cheap VPS Hosting
Cheap Windows VPS
Reseller
Dedicated Servers
Web Services
Resources
Network Tools
About AccuWeb
`

AccuWebHosting USA © Copyright 2003 - 2021. All rights reserved.
AccuWebHosting, 48 Bi-State Plaza #185 Old Tappan, NJ 07675, United States of
America. Site Designed by AccuWebTechAccuWebTech.Com

chat