Package mod_security: Information
Source package: mod_security
Version: 1.9.5-alt2
Build time: Apr 28, 2009, 04:36 PM
Category: System/Servers
Report package bugHome page: http://www.modsecurity.org
License: GPL
Summary: Tighten web applications security for Apache 1.3
Description:
Mod_security is an Apache 1.x/2.x module whose purpose is to tighten the Web application security. Effectively, it is an intrusion detection and prevention system for the web server. At the moment its main features are: * Audit log; store full request details in a separate file, including POST payloads. * Request filtering; incoming requests can be analysed and offensive requests can be rejected (or simply logged, if that is what you want). This feature can be used to prevent many types of attacks (e.g. XSS attacks, SQL injection, ...) and even allow you to run insecure applications on your servers (if you have no other choice, of course).
List of rpms provided by this srpm:
mod_security (x86_64, i586)
mod_security-common (x86_64, i586)
mod_security-doc (noarch)
mod_security (x86_64, i586)
mod_security-common (x86_64, i586)
mod_security-doc (noarch)
Maintainer: Vladimir V Kamarzin
Last changed
April 28, 2009 Denis Smirnov 1.9.5-alt2
- comment SecRule
Dec. 6, 2008 Michael Shigorin 1.9.5-alt1
- 1.9.5 - minor spec cleanup - noarch docs - buildreq
Oct. 2, 2007 Michael Shigorin 1.9.4-alt6
- Moved default SecUploadDir from implicit /tmp to explicit /var/cache/httpd/modsec (works better with /tmp being non-writable for apache user)