Description
Describe the Bug
apache::mod::security is not RHEL 8 compliant.
mod_security_crs-3 incompatible, different path and names.
Expected Behavior
.
Steps to Reproduce
install on rhel8
Environment
- RHEL 8
Additional Context
new mod_security_crs-3 in on:
$modsec_crs_path = '/usr/share/mod_modsecurity_crs'
activated_rules => [
"$modsec_crs_path/rules/crawlers-user-agents.data",
"$modsec_crs_path/rules/iis-errors.data",
"$modsec_crs_path/rules/java-classes.data",
"$modsec_crs_path/rules/java-code-leakages.data",
"$modsec_crs_path/rules/java-errors.data",
"$modsec_crs_path/rules/lfi-os-files.data",
"$modsec_crs_path/rules/php-config-directives.data",
"$modsec_crs_path/rules/php-errors.data",
"$modsec_crs_path/rules/php-function-names-933150.data",
"$modsec_crs_path/rules/php-function-names-933151.data",
"$modsec_crs_path/rules/php-variables.data",
"$modsec_crs_path/rules/REQUEST-901-INITIALIZATION.conf",
"$modsec_crs_path/rules/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf",
"$modsec_crs_path/rules/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf",
"$modsec_crs_path/rules/REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf",
"$modsec_crs_path/rules/REQUEST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf",
"$modsec_crs_path/rules/REQUEST-903.9005-CPANEL-EXCLUSION-RULES.conf",
"$modsec_crs_path/rules/REQUEST-903.9006-XENFORO-EXCLUSION-RULES.conf",
"$modsec_crs_path/rules/REQUEST-905-COMMON-EXCEPTIONS.conf",
"$modsec_crs_path/rules/REQUEST-910-IP-REPUTATION.conf",
"$modsec_crs_path/rules/REQUEST-911-METHOD-ENFORCEMENT.conf",
"$modsec_crs_path/rules/REQUEST-912-DOS-PROTECTION.conf",
"$modsec_crs_path/rules/REQUEST-913-SCANNER-DETECTION.conf",
"$modsec_crs_path/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf",
"$modsec_crs_path/rules/REQUEST-921-PROTOCOL-ATTACK.conf",
"$modsec_crs_path/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf",
"$modsec_crs_path/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf",
"$modsec_crs_path/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf",
"$modsec_crs_path/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf",
"$modsec_crs_path/rules/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf",
"$modsec_crs_path/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf",
"$modsec_crs_path/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf",
"$modsec_crs_path/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf",
"$modsec_crs_path/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf",
"$modsec_crs_path/rules/REQUEST-949-BLOCKING-EVALUATION.conf",
"$modsec_crs_path/rules/RESPONSE-950-DATA-LEAKAGES.conf",
"$modsec_crs_path/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf",
"$modsec_crs_path/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf",
"$modsec_crs_path/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf",
"$modsec_crs_path/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf",
"$modsec_crs_path/rules/RESPONSE-959-BLOCKING-EVALUATION.conf",
"$modsec_crs_path/rules/RESPONSE-980-CORRELATION.conf",
"$modsec_crs_path/rules/restricted-files.data",
"$modsec_crs_path/rules/restricted-upload.data",
"$modsec_crs_path/rules/scanners-headers.data",
"$modsec_crs_path/rules/scanners-urls.data",
"$modsec_crs_path/rules/scanners-user-agents.data",
"$modsec_crs_path/rules/scripting-user-agents.data",
"$modsec_crs_path/rules/sql-errors.data",
"$modsec_crs_path/rules/unix-shell.data",
"$modsec_crs_path/rules/windows-powershell-commands.data",
],