apachemodsecuritysettings1.0Services: Mod_Security+Apache+Proxy: Settingspkg_edit.php?xml=apache_mod_security_settings.xml&id=0Apache/pkg_edit.php?xml=apache_settings.xml&id=0ModSecurity/pkg_edit.php?xml=apache_mod_security_settings.xmlSync/pkg_edit.php?xml=apache_mod_security_sync.xmlModule options/pkg_edit.php?xml=apache_mod_security_settings.xml2Rule Groups/pkg.php?xml=apache_mod_security_groups.xml2Rule Manipulation/pkg.php?xml=apache_mod_security_manipulation.xml2Security optionslisttopicModSecurity protectionenablemodsecurity
More info about ModSecurity can be found here: http://www.modsecurity.org/]]>checkboxDisable Backend Compressionsecbackendcompression
This directive is mandatory in reverse proxy mode to ModSecurity be able to inspect response bodies.]]>selectMax request per IPSecReadStateLimit
//274
More info about this attack can be found here: http://en.wikipedia.org/wiki/Slowloris
]]>
input10Maximum request body size in memory.secrequestbodyinmemorylimitConfigures the maximum request body size ModSecurity will store in memory.input10Maximum request body size for buffering.secrequestbodylimitConfigures the maximum request body size ModSecurity will accept for buffering.input10Modsecurity addonslisttopicHttp-guardian.plenablehttpdguardian
NOTE: In order for this script to be effective it must be able to see all requests coming to the web server, so no per-virtual host option for this script.]]>selectThreshold 1minthreshold1mininput5Threshold 5minthreshold5mininput5
apache_mod_security_resync();
/usr/local/pkg/apache_mod_security.inc