diff options
Diffstat (limited to 'config/apache_mod_security/apache_mod_security.inc')
-rw-r--r-- | config/apache_mod_security/apache_mod_security.inc | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/config/apache_mod_security/apache_mod_security.inc b/config/apache_mod_security/apache_mod_security.inc index 4eb24c2c..38d53601 100644 --- a/config/apache_mod_security/apache_mod_security.inc +++ b/config/apache_mod_security/apache_mod_security.inc @@ -221,6 +221,12 @@ function generate_apache_configuration() { else $secauditengine = "RelevantOnly"; + // SecReadStateLimit + if($config['installedpackages']['apachemodsecuritysettings']['config'][0]['SecReadStateLimit']) + $secreadstatelimit = "SecReadStateLimit " . $config['installedpackages']['apachemodsecuritysettings']['config'][0]['SecReadStateLimit'] ."\n"; + else + $secreadstatelimit = ""; + $mod_proxy .= <<<EOF # Off when using ProxyPass @@ -409,6 +415,9 @@ EOF; # Only allow bytes from this range SecFilterForceByteRange 1 255 + # Help prevent the effects of a Slowloris-type of attack + $secreadstatelimit + # Cookie format checks. SecFilterCheckCookieFormat On |