diff options
author | Jerome Charaoui <jcharaoui@cmaisonneuve.qc.ca> | 2010-01-04 15:26:24 -0500 |
---|---|---|
committer | Jerome Charaoui <jcharaoui@cmaisonneuve.qc.ca> | 2010-01-04 15:26:24 -0500 |
commit | 550fa2b0a405e9bda6e2d82a1e423396a7ffdaa8 (patch) | |
tree | 4cb0a030bf9f837b9621af2b671539b6f2133e90 /templates/vhosts/php_simplemachine/php_simplemachine.erb | |
parent | db29f34f58c35f487eaf04e54d26fe2a9405e601 (diff) |
add $mod_security_relevantonly flag, enabled by default, logs only on suspicious requests, set to 'false' to log all requests (as before)
Diffstat (limited to 'templates/vhosts/php_simplemachine/php_simplemachine.erb')
-rw-r--r-- | templates/vhosts/php_simplemachine/php_simplemachine.erb | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/templates/vhosts/php_simplemachine/php_simplemachine.erb b/templates/vhosts/php_simplemachine/php_simplemachine.erb index 72f7b38..ddb59ed 100644 --- a/templates/vhosts/php_simplemachine/php_simplemachine.erb +++ b/templates/vhosts/php_simplemachine/php_simplemachine.erb @@ -51,7 +51,11 @@ <IfModule mod_security2.c> <%- if mod_security.to_s == 'true' then -%> SecRuleEngine On + <%- if mod_security_relevantonly.to_s == 'true' then -%> + SecAuditEngine RelevantOnly + <%- else -%> SecAuditEngine On + <%- end -%> <%- else -%> SecRuleEngine Off SecAuditEngine Off @@ -116,7 +120,11 @@ <IfModule mod_security2.c> <%- if mod_security.to_s == 'true' then -%> SecRuleEngine On + <%- if mod_security_relevantonly.to_s == 'true' then -%> + SecAuditEngine RelevantOnly + <%- else -%> SecAuditEngine On + <%- end -%> <%- else -%> SecRuleEngine Off SecAuditEngine Off |