Editor to tame mod_security rulesets
WARNING: THIS IS ALPHA STAGE QUALITY AND WILL MOST CERTAINLY DELETE YOUR APACHE CONFIGURATION (It doesn’t, but: no waranty and such.)
- Simple GUI editor for SecRuleDisableById settings
- Tries to suggest false positives from error and audit logs
- (And a few options to configure mod_security and CRS variables.)
- Obviously requires ssh -X forwarding, or preparing config rules on a local test setup, and *.conf files to be writable by current user (running as root is not advised).
You obviously should have Apache(2.x) + mod_security(2.9) + CRS(3.x) set up and running already (in DetectionOnly mode initially), to allow for log inspection and adapting rules.
- start modseccfg (python3 -m modseccfg)
- Select a configuration/vhost file to inspect + work on.
- Pick the according error.log
- Inspect the rules with a high error count.
- [Disable] offending rules (if they’re not essential to CRS, or would likely poke holes into useful protections).
- Thenceforth restart Apache after testing changes (apache2ctl -t).
- Preferrably do not edit default /etc/apache* files
- Work on separated /srv/web/conf.d/* configuration, if available
- And keep vhost settings in e.g. vhost.*.dir files, rather than multiple <VirtualHost> in one *.conf (else only the first section will be augmented).
- Doesn’t process any audit.log yet.
- Can’t classify wrapped (<Location> or other directives) rules yet.
- No rule information dialog.
- No SecOption editor yet.
- No CRS settings (setvar:crs…) editor yet.
- Recipes are not worth using yet.
- No sudo usage.
- No support for nginx or mod_sec v3.
- No support for Windows setups. (Would work, but no interest in user support.)
Release history Release notifications | RSS feed
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
|Filename, size||File type||Python version||Upload date||Hashes|
|Filename, size modseccfg-0.0.9-py3-none-any.whl (38.4 kB)||File type Wheel||Python version 3.7||Upload date||Hashes View|
Hashes for modseccfg-0.0.9-py3-none-any.whl