Uploaded image for project: 'Modules'
  1. Modules
  2. MODULES-10455

apache: vhost parameter modsec_disable_ips ineffective

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Accepted
    • Priority: Normal
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: apache
    • Labels:
      None
    • Environment:

      CentOS 7.7.1908, Puppet agent version 5.5.18-1

    • Template:
      MODULES Bug Template
    • Method Found:
      Needs Assessment
    • QA Risk Assessment:
      Needs Assessment

      Description

      The vhost parameter modsec_disable_ips does not seem to have the desired effect. Replacing the lines 19-20 in file templates/vhost/_security.erb

        SecRule REMOTE_ADDR "<%= ips %>" "nolog,allow,id:1234123455"   
        SecAction  "phase:2,pass,nolog,id:1234123456"
      

      by the line

        SecRule REMOTE_ADDR "@IPMatch <%= ips %>" "phase:1,nolog,allow,ctl:ruleEngine=Off,id:1234123455"
      

      seems to fix the problem for me.

        Attachments

          Activity

            People

            Assignee:
            adrian.iurca Adrian Iurca
            Reporter:
            wiene Peter Wienemann
            Votes:
            1 Vote for this issue
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated:

                Zendesk Support