Comments on Nginx with libmodsecurity and OWASP ModSecurity Core Rule Set on Ubuntu 16.04

In this tutorial, I will show you how to compile the latest version of Nginx with libmodsecurity (Modsecurity 3.x) NOT to be confused with Modsecurity 2.9. We will also be integrating the OWASP ModSecurity Core Rule Set (CRS).

2 Comment(s)

Add comment

Please register in our forum first to comment.

Comments

By: Luiz Biazus
Reply  

Hello, thanks for a great tutorial,

I'm getting this wierd error:

root@modsecurity-2gen:/usr/local/nginx/conf# service nginx configtestnginx: [emerg] "modsecurity_rules_file" directive Rules error. File: /usr/local/nginx/conf/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf. Line: 169. Column: 390. Expecting a variable, got:  :  MULTIPART_SEMICOLON_MISSING},\ in /usr/local/nginx/conf/sites-enabled/teste.pppp.com:9nginx: configuration file /usr/local/nginx/conf/nginx.conf test failed

Do you face this issue?

 

Best Regards

 

Luiz

 

 

By: Krishna Modi
Reply  

Try https://hub.docker.com/r/krish512/modsecurity/, it is already built with latest ModSecurity CRS rules

Do not forget to give a star if you like it