How to remove custom mod-security install? (Want CB2.0 to handle it from now on)

Wanabo

Wanabo

Verified User
Joined
Jan 19, 2013
Messages
339
My server: CentOS 7, Apache/Nginx

From now on I want CustomBuild 2.0 to handle my mod-security installation.
But how do I remove my custom mod-security installation?

I followed this tutorial:
Install mod_security on a DirectAdmin box
First download the latest version of mod_security from http://www.modsecurity.org
wget https://www.modsecurity.org/tarball/2.9.0/modsecurity-2.9.0.tar.gz

tar zvxf modsecurity-2.9.0.tar.gz
cd modsecurity-2.9.0.tar.gz
yum install expat-devel -y
./configure
make
make install
cp modsecurity.conf-recommended /etc/httpd/conf/modsecurity.conf
cp unicode.mapping /etc/httpd/conf/unicode.mapping

We have succesfully installed mod_security, but we need to tell Apache about it.
Add this to /etc/httpd/conf/extra/httpd-includes.conf

## Load dependencies ##
LoadFile /usr/local/lib/libxml2.so
## Load mod_security ##
LoadModule security2_module /usr/lib/apache/mod_security2.so

Restart httpd for mod_security to kick in!
service httpd restart

To check if the mod_security module has loaded, type this and find security2_module (shared):
apachectl -t -D DUMP_MODULES

Installing OWASP rules (http://spiderlabs.gi...modsecurity-crs):

wget https://github.com/SpiderLabs/owasp-modsecurity-crs/tarball/master
mv master rules.tar.gz
tar zvxf rules.tar.gz
cd SpiderLabs-owasp-modsecurity*
mkdir /etc/httpd/conf/crs
mv * /etc/httpd/conf/crs
cd /etc/httpd/conf/crs
mv modsecurity_crs_10_setup.conf.example modsecurity_crs_10_setup.conf
for f in `ls base_rules/` ; do sudo ln -s /etc/httpd/conf/crs/base_rules/$f activated_rules/$f ; done
for f in `ls optional_rules/ | grep comment_spam` ; do sudo ln -s /etc/httpd/conf/crs/optional_rules/$f activated_rules/$f ; done

Now add the following to /etc/httpd/conf/extra/httpd-includes.conf:

<IfModule security2_module>
Include conf/crs/modsecurity_crs_10_setup.conf
Include conf/crs/activated_rules/*.conf
</IfModule>

Finally restart Apache...
service httpd restart
Click to expand...
 
You should remove any modsecurity related config you've added in apache (in the file listed in your first post), once done you should be able to re-install modsecurity using CB.

Regards
 
Thanks for your response. I certainly can undo the config files. But do I need to undo ./configure? Should I remove / uninstall the mod-security binary?
 
You may need to check where the mod has been installed and remove it, but as long as it is not used, you should be fine.

Regards
 
You must log in or register to reply here.
Back
Top