[tools] update.script

Do you like use update.script ?

  • yes, all time

    Votes: 221 69.1%

  • no, some time

    Votes: 44 13.8%

  • some time

    Votes: 55 17.2%
  • Total voters
    320
Well, it seems to always download/compile 0.96.1 regardless...... hmmmmmmm

EDIT: ok, its doing 0.96.2 now after some tries.......
 
Last edited:
The server to get the mirrors is down at the moment when I run this script. Could someone please fix it.

Thanks.
 
I think this very usefull script is dead from some months.
So you have to do update or install manually :mad:
 
Well it was up and running only about 8 days ago when I used it. If this project does get canceled, could the author zip up his directory and share it? Atleast we can host it on our own servers to keep it alive.
 
If the TS want, I can host the files etc so this can be still used. Please let me know in PM if wanted.
 
Really good new, if it works again.
Is it for a long time ? I hope !!


I can also mirror files if you need.
Just contact me.

Best regards
 
After installing mod security, I can not visit ip based urls like webmail and phpmyadmin. In apache error log I see:

HTML: 
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] ModSecurity: Access denied with code 400 (phase 2). Pattern match "^[\\d\\.]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity2/optional_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "60"] [id "960017"] [msg "Host header is a numeric IP address"] [severity "CRITICAL"] [tag "PROTOCOL_VIOLATION/IP_HOST"] [hostname "93.186.113.29"] [uri "/favicon.ico"] [unique_id "TNBSP126cR0AAB28XJkAAAAD"]
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] File does not exist: /var/www/html/400.shtml
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] ModSecurity: Warning. Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity2/base_rules/modsecurity_crs_60_correlation.conf"] [line "41"] [msg "Transactional Anomaly Score (score 10): Invalid request"] [hostname "93.186.113.29"] [uri "/favicon.ico"] [unique_id "TNBSP126cR0AAB28XJkAAAAD"]
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] ModSecurity: Warning. Match of "rx ModSecurity" against "WEBSERVER_ERROR_LOG" required. [file "/etc/modsecurity2/optional_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960913"] [msg "Invalid request"] [severity "CRITICAL"] [hostname "93.186.113.29"] [uri "/favicon.ico"] [unique_id "TNBSP126cR0AAB28XJkAAAAD"]

How can I fix this? Or should I fix this?

(good news is directadmin works fine with ip :) )
 
ozgurerdogan said:
After installing mod security, I can not visit ip based urls like webmail and phpmyadmin. In apache error log I see:

HTML: 
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] ModSecurity: Access denied with code 400 (phase 2). Pattern match "^[\\d\\.]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity2/optional_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "60"] [id "960017"] [msg "Host header is a numeric IP address"] [severity "CRITICAL"] [tag "PROTOCOL_VIOLATION/IP_HOST"] [hostname "93.186.113.29"] [uri "/favicon.ico"] [unique_id "TNBSP126cR0AAB28XJkAAAAD"]
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] File does not exist: /var/www/html/400.shtml
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] ModSecurity: Warning. Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity2/base_rules/modsecurity_crs_60_correlation.conf"] [line "41"] [msg "Transactional Anomaly Score (score 10): Invalid request"] [hostname "93.186.113.29"] [uri "/favicon.ico"] [unique_id "TNBSP126cR0AAB28XJkAAAAD"]
[Tue Nov 02 20:02:39 2010] [error] [client 81.213.147.130] ModSecurity: Warning. Match of "rx ModSecurity" against "WEBSERVER_ERROR_LOG" required. [file "/etc/modsecurity2/optional_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960913"] [msg "Invalid request"] [severity "CRITICAL"] [hostname "93.186.113.29"] [uri "/favicon.ico"] [unique_id "TNBSP126cR0AAB28XJkAAAAD"]

How can I fix this? Or should I fix this?

(good news is directadmin works fine with ip :) )
Click to expand...

use few rules and delete some :D
etc/modsecurity2/base_rules
or add light rules if you wanna.

Wael
 
thank you.

in etc/modsecurity2/ folder I have:
base_rules
optional_rules
modsecurity-rules-selected-by-web4host.net.conf

Does that mean if a rule file/folder exist in there, all those rules are applied?

Where can I find light rules?

I am afraid to have user complains because of mod security as this is fresh install server.

Thanks again.
 
Ok I disabled optional rules and work fine. Do you think base_rules and modsecurity-rules-selected-by-web4host.net are enough for some basic protection.?

thanks
 
hello
on
MODsecurity 2.x


[root@server updatescript]# vi /etc/httpd/conf/extra/httpd-includes.conf
[root@server updatescript]# service httpd restart
Stopping httpd: [ OK ]
Starting httpd: httpd: Syntax error on line 167 of /etc/httpd/conf/httpd.conf: Syntax error on line 1 of /etc/httpd/conf/extra/httpd-includes.conf: Cannot load /usr/lib/libxml2.so into server: /usr/lib/libxml2.so: cannot open shared object file: No such file or directory
 
You must log in or register to reply here.
Back
Top