ModSecurity Comodo rules aren't applied?

V

vancanneyt

Verified User
Joined
Dec 13, 2012
Messages
93
After installing ModSecurity with:
Code: 
./build modsecurity
./build modsecurity_rules
first issue I ran into was in this topic. After fixing that I tried to test if the rules are applied and see if the WAF does its work. I followed the example of the Comodo knowledgebase. But if I test it, it still returns http response code 200 instead of blocking the request. So it seems the WAF is not working...
Anyone an idea what the issue might be?
 
Hello,

For ModSecurity to work with Nginx try and set SecRequestBodyAccess On

You can do it in Directadmin interface at admin level.
 
zEitEr said:
Hello,

For ModSecurity to work with Nginx try and set SecRequestBodyAccess On

You can do it in Directadmin interface at admin level.
Click to expand...

It was Off indeed and I changed it in /etc/nginx/nginx-modsecurity.conf and restarted Nginx, test turns out with 403 respons code. Thanks!
 
You must log in or register to reply here.
Back
Top