From 5112b0a8ccc83e1b3dc44b55bac5444d7c125877 Mon Sep 17 00:00:00 2001 From: mh Date: Wed, 24 Jun 2009 20:31:54 +0200 Subject: unified mod_sec stuff, turn audit engine off as well --- templates/vhosts/php_wordpress/CentOS.erb | 16 ++++++++++------ 1 file changed, 10 insertions(+), 6 deletions(-) (limited to 'templates/vhosts/php_wordpress') diff --git a/templates/vhosts/php_wordpress/CentOS.erb b/templates/vhosts/php_wordpress/CentOS.erb index f12ab6f..88da307 100644 --- a/templates/vhosts/php_wordpress/CentOS.erb +++ b/templates/vhosts/php_wordpress/CentOS.erb @@ -48,15 +48,17 @@ <%- if mod_security.to_s == 'true' then -%> SecRuleEngine On + SecAuditEngine On + <%- else -%> + SecRuleEngine Off + SecAuditEngine Off + <%- end -%> SecAuditLogType Concurrent SecAuditLogStorageDir <%= logdir %>/ SecAuditLog <%= logdir %>/mod_security_audit.log SecDebugLog <%= logdir %>/mod_security_debug.log # http://optics.csufresno.edu/~kriehn/fedora/fedora_files/f9/howto/modsecurity.html SecRuleRemoveById "960010" - <%- else -%> - SecRuleEngine Off - <%- end -%> <%- unless additional_options.to_s == 'absent' then -%> @@ -110,15 +112,17 @@ <%- if mod_security.to_s == 'true' then -%> SecRuleEngine On + SecAuditEngine On + <%- else -%> + SecRuleEngine Off + SecAuditEngine Off + <%- end -%> SecAuditLogType Concurrent SecAuditLogStorageDir <%= logdir %>/ SecAuditLog <%= logdir %>/mod_security_audit.log SecDebugLog <%= logdir %>/mod_security_debug.log # http://optics.csufresno.edu/~kriehn/fedora/fedora_files/f9/howto/modsecurity.html SecRuleRemoveById "960010" - <%- else -%> - SecRuleEngine Off - <%- end -%> <%- unless additional_options.to_s == 'absent' then -%> -- cgit v1.2.3