NEED FIX: Apache 2.4 & modruid & php 5.5 & modsecurity - Failed to access DBM file
Hi,
options.conf are enabled these:
php1_release=5.5
php1_mode=mod_php
modsecurity=yes
modsecurity_ruleset=comodo
apache_ver=2.4
mod_ruid2=yes
modsecurity_uploadscan=yes
modsecurity complains these error's always (they dosent exits):
/var/log/modsec_audit/******/20150305/20150305-1414/20150305-141449-VPhIuVQikzYAADWf2m0AAAAF
Message: collections_remove_stale: Failed to access DBM file "/tmp/global": Permission denied
Message: collections_remove_stale: Failed to access DBM file "/tmp/ip": Permission denied
Message: collections_remove_stale: Failed to access DBM file "/tmp/default_SESSION": Permission denied
root@:/var/log/modsec_audit/testi24# ls -lt /tmp/global
ls: cannot access /tmp/global: No such file or directory
root@:/var/log/modsec_audit/testi24# ls -lt /tmp/ip
ls: cannot access /tmp/ip: No such file or directory
root@:/var/log/modsec_audit/testi24# ls -lt /tmp/default_SESSION
ls: cannot access /tmp/default_SESSION: No such file or directory
Other files also usermode created first time, so noone cant read/access them:
ls -lt /tmp/
total 24
-rw-r----- 1 hin***com hin***com 0 Mar 5 14:13 default_SESSION
-rw-r----- 1 hin***com hin***com 8192 Mar 5 11:45 default_SESSION.pag
-rw-r----- 1 hin***com hin***com 8192 Mar 4 19:38 ip.pag
-rw-r----- 1 hin***com hin***com 0 Mar 3 22:18 default_SESSION.dir
-rw-r----- 1 hin***om hin***com 0 Mar 3 22:18 global.dir
-rw-r----- 1 hin***com hin***com 0 Mar 3 22:18 global.pag
-rw-r----- 1 hin***com hin***com 0 Mar 3 22:17 ip.dir
Also: /etc/httpd/conf/extra/httpd-modsecurity.conf need add: SecUploadFileMode 0644 that uploaded filed can scanned.
I thing templates needed FIX for this ?
Hi,
options.conf are enabled these:
php1_release=5.5
php1_mode=mod_php
modsecurity=yes
modsecurity_ruleset=comodo
apache_ver=2.4
mod_ruid2=yes
modsecurity_uploadscan=yes
modsecurity complains these error's always (they dosent exits):
/var/log/modsec_audit/******/20150305/20150305-1414/20150305-141449-VPhIuVQikzYAADWf2m0AAAAF
Message: collections_remove_stale: Failed to access DBM file "/tmp/global": Permission denied
Message: collections_remove_stale: Failed to access DBM file "/tmp/ip": Permission denied
Message: collections_remove_stale: Failed to access DBM file "/tmp/default_SESSION": Permission denied
root@:/var/log/modsec_audit/testi24# ls -lt /tmp/global
ls: cannot access /tmp/global: No such file or directory
root@:/var/log/modsec_audit/testi24# ls -lt /tmp/ip
ls: cannot access /tmp/ip: No such file or directory
root@:/var/log/modsec_audit/testi24# ls -lt /tmp/default_SESSION
ls: cannot access /tmp/default_SESSION: No such file or directory
Other files also usermode created first time, so noone cant read/access them:
ls -lt /tmp/
total 24
-rw-r----- 1 hin***com hin***com 0 Mar 5 14:13 default_SESSION
-rw-r----- 1 hin***com hin***com 8192 Mar 5 11:45 default_SESSION.pag
-rw-r----- 1 hin***com hin***com 8192 Mar 4 19:38 ip.pag
-rw-r----- 1 hin***com hin***com 0 Mar 3 22:18 default_SESSION.dir
-rw-r----- 1 hin***om hin***com 0 Mar 3 22:18 global.dir
-rw-r----- 1 hin***com hin***com 0 Mar 3 22:18 global.pag
-rw-r----- 1 hin***com hin***com 0 Mar 3 22:17 ip.dir
Also: /etc/httpd/conf/extra/httpd-modsecurity.conf need add: SecUploadFileMode 0644 that uploaded filed can scanned.
I thing templates needed FIX for this ?
