diff options
| author | mh <mh@immerda.ch> | 2009-03-09 21:32:28 +0000 |
|---|---|---|
| committer | mh <mh@immerda.ch> | 2009-03-09 21:32:28 +0000 |
| commit | e3286ee7ef6e12ccb38a42840ed2d8fee3303486 (patch) | |
| tree | 28b69042b386db52e57552f3c3095e23bf2beff5 /templates/vhosts/php_joomla | |
| parent | 73b4a680216302e6758bbefa04e789192f8da1fb (diff) | |
write mod_sec logfiles per vhost
Diffstat (limited to 'templates/vhosts/php_joomla')
| -rw-r--r-- | templates/vhosts/php_joomla/CentOS.erb | 21 |
1 files changed, 18 insertions, 3 deletions
diff --git a/templates/vhosts/php_joomla/CentOS.erb b/templates/vhosts/php_joomla/CentOS.erb index 33a714a..49addfd 100644 --- a/templates/vhosts/php_joomla/CentOS.erb +++ b/templates/vhosts/php_joomla/CentOS.erb @@ -52,9 +52,15 @@ </Directory> <IfModule mod_security2.c> - SecRuleEngine <%= if mod_security.to_s == 'true' then "On" else "Off" end %> - # http://optics.csufresno.edu/~kriehn/fedora/fedora_files/f9/howto/modsecurity.html - SecRuleRemoveById "960010" + <%- if mod_security.to_s == 'true' then -%> + SecRuleEngine On + SecAuditLog <%= logdir %>/mod_security_audit.log + SecFilterDebugLog <%= logdir %>/mod_security_debug.log + # http://optics.csufresno.edu/~kriehn/fedora/fedora_files/f9/howto/modsecurity.html + SecRuleRemoveById "960010" + <%- else -%> + SecRuleEngine Off + <%- end -%> </IfModule> <%- unless additional_options.to_s == 'absent' then -%> @@ -109,6 +115,15 @@ <IfModule mod_security2.c> SecRuleEngine <%= if mod_security.to_s == 'true' then "On" else "Off" end %> + <%- if mod_security.to_s == 'true' then -%> + SecRuleEngine On + SecAuditLog <%= logdir %>/mod_security_audit.log + SecFilterDebugLog <%= logdir %>/mod_security_debug.log + # http://optics.csufresno.edu/~kriehn/fedora/fedora_files/f9/howto/modsecurity.html + SecRuleRemoveById "960010" + <%- else -%> + SecRuleEngine Off + <%- end -%> </IfModule> <%- unless additional_options.to_s == 'absent' then -%> |