disabling mod_security 2.1.0

Hallo list

How do I disable completely mod_security on a directory
level? For example I have something like this:
Alias /foo "/var/www/localhost/foo.htdocs/"
<Directory
"/var/www/localhost/foo.htdocs/">
...
...
</Directory>


How can I now disable mod_security for this Alias?
I am lost. Don't know how do completely disable mod_security
for that directory/alias?


cheers

SteveB
-- 
"Feel free" - 10 GB Mailbox, 100 FreeSMS/Monat
...
Jetzt GMX TopMail testen: http://www.gmx.net/d
e/go/topmail

------------------------------------------------------------
-------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the
chance to share your
opinions on IT & business topics through brief
surveys-and earn cash
http://www.techsay.com/default.
php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
mod-security-users mailing list
mod-security-userslists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-
security-users

SteveB,
Since you are using an Apache alias for "/foo" you
can use an Apache
Location directive contain and then disable the ModSecurity
Rule engine
like this -

<Location /foo>
SecRuleEngine Off
</Location>

This will turn off the Mod rule engine for any URL that
starts off with
"/foo".  One caveat however, since this uses
Apache scope locations, it
will not be processed until phase:2.  The impact of this is
that any Mod
rules that are running in phase:1 will still inspect these
requests and
may take action.  If you want to disable this within phase:1
as well,
then don't use the Apache scope containers and instead use a
Mod chained
rule like this -

SecRule REQUEST_URI "^/foo"
"phase:1,chain,nolog,allow,ctl:ruleEngine=Off"

This rule uses the "ctl:ruleEngine=Off" action to
control the rule
engine and can run in phase:1.

-- 
Ryan C. Barnett
ModSecurity Community Manager
Breach Security: Director of Application Security Training
Web Application Security Consortium (WASC) Member
Author: Preventing Web Attacks with Apache
 
--------------
Web Security Threat Report Webinar on May 9, 2007 (12 pm
EST)
Learn More About the Breach Webinar Series:
http://www.breach.
com/webinars.asp
--------------
 
> -----Original Message-----
> From: mod-security-users-bounceslists.sourceforge.net
[mailto:mod-
> security-users-bounceslists.sourceforge.net] On
Behalf Of
> steeeeeveeegmx.net
> Sent: Sunday, April 08, 2007 1:43 PM
> To: mod-security-userslists.sourceforge.net
> Subject: [mod-security-users] disabling mod_security
2.1.0
> 
> Hallo list
> 
> How do I disable completely mod_security on a directory
level? For
example
> I have something like this:
> Alias /foo "/var/www/localhost/foo.htdocs/"
> <Directory
"/var/www/localhost/foo.htdocs/">
> ...
> ...
> </Directory>
> 
> 
> How can I now disable mod_security for this Alias?
> I am lost. Don't know how do completely disable
mod_security for that
> directory/alias?
> 
> 
> cheers
> 
> SteveB
> --
> "Feel free" - 10 GB Mailbox, 100
FreeSMS/Monat ...
> Jetzt GMX TopMail testen: http://www.gmx.net/d
e/go/topmail
> 
>
------------------------------------------------------------
------------
-
> Take Surveys. Earn Cash. Influence the Future of IT
> Join SourceForge.net's Techsay panel and you'll get the
chance to
share
> your
> opinions on IT & business topics through brief
surveys-and earn cash
>
http://www.techsay.com/default.p
hp?page=join.php&p=sourceforge&CID=DEVDE
V
> _______________________________________________
> mod-security-users mailing list
> mod-security-userslists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/mod-
security-users

------------------------------------------------------------
-------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the
chance to share your
opinions on IT & business topics through brief
surveys-and earn cash
http://www.techsay.com/default.
php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
mod-security-users mailing list
mod-security-userslists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-
security-users

My bad, I was thinking of some different solutions when I
was creating
that rule... you don't need a chained rule just this -

SecRule REQUEST_URI "^/foo"
"phase:1,nolog,allow,ctl:ruleEngine=Off"

-- 
Ryan C. Barnett
ModSecurity Community Manager
Breach Security: Director of Application Security Training
Web Application Security Consortium (WASC) Member
Author: Preventing Web Attacks with Apache
 
--------------
Web Security Threat Report Webinar on May 9, 2007 (12 pm
EST)
Learn More About the Breach Webinar Series:
http://www.breach.
com/webinars.asp
--------------
 

> -----Original Message-----
> From: Ryan Barnett
> Sent: Monday, April 09, 2007 10:27 AM
> To: steeeeeveeegmx.net; mod-security-userslists.sourceforge.net
> Subject: RE: [mod-security-users] disabling
mod_security 2.1.0
> 
> SteveB,
> Since you are using an Apache alias for
"/foo" you can use an Apache
> Location directive contain and then disable the
ModSecurity Rule
engine
> like this -
> 
> <Location /foo>
> SecRuleEngine Off
> </Location>
> 
> This will turn off the Mod rule engine for any URL that
starts off
with
> "/foo".  One caveat however, since this uses
Apache scope locations,
it
> will not be processed until phase:2.  The impact of
this is that any
Mod
> rules that are running in phase:1 will still inspect
these requests
and
> may take action.  If you want to disable this within
phase:1 as well,
then
> don't use the Apache scope containers and instead use a
Mod chained
rule
> like this -
> 
> SecRule REQUEST_URI "^/foo"
"phase:1,chain,nolog,allow,ctl:ruleEngine=Off"
> 
> This rule uses the "ctl:ruleEngine=Off"
action to control the rule
engine
> and can run in phase:1.
> 
> --
> Ryan C. Barnett
> ModSecurity Community Manager
> Breach Security: Director of Application Security
Training
> Web Application Security Consortium (WASC) Member
> Author: Preventing Web Attacks with Apache
> 
> --------------
> Web Security Threat Report Webinar on May 9, 2007 (12
pm EST)
> Learn More About the Breach Webinar Series:
> http://www.breach.
com/webinars.asp
> --------------
> 
> > -----Original Message-----
> > From: mod-security-users-bounceslists.sourceforge.net [mailto:mod-
> > security-users-bounceslists.sourceforge.net] On
Behalf Of
> > steeeeeveeegmx.net
> > Sent: Sunday, April 08, 2007 1:43 PM
> > To: mod-security-userslists.sourceforge.net
> > Subject: [mod-security-users] disabling
mod_security 2.1.0
> >
> > Hallo list
> >
> > How do I disable completely mod_security on a
directory level? For
> example
> > I have something like this:
> > Alias /foo
"/var/www/localhost/foo.htdocs/"
> > <Directory
"/var/www/localhost/foo.htdocs/">
> > ...
> > ...
> > </Directory>
> >
> >
> > How can I now disable mod_security for this
Alias?
> > I am lost. Don't know how do completely disable
mod_security for
that
> > directory/alias?
> >
> >
> > cheers
> >
> > SteveB
> > --
> > "Feel free" - 10 GB Mailbox, 100
FreeSMS/Monat ...
> > Jetzt GMX TopMail testen: http://www.gmx.net/d
e/go/topmail
> >
> >
------------------------------------------------------------
------------
> -
> > Take Surveys. Earn Cash. Influence the Future of
IT
> > Join SourceForge.net's Techsay panel and you'll
get the chance to
share
> > your
> > opinions on IT & business topics through brief
surveys-and earn cash
> >
>
http://www.techsay.com/default.p
hp?page=join.php&p=sourceforge&CID=DEVDE
V
> > _______________________________________________
> > mod-security-users mailing list
> > mod-security-userslists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/mod-
security-users

------------------------------------------------------------
-------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the
chance to share your
opinions on IT & business topics through brief
surveys-and earn cash
http://www.techsay.com/default.
php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
mod-security-users mailing list
mod-security-userslists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-
security-users

Greetings,

Does anyone have documentation of the modsecurity console? I
need to
deploy it but I would like to read a bit about it first,
currently I've
deploy the modsecurity modules and I need a console to
gather the log
info from the servers. I don't see in the website
documentation for the
console

Regards,

Chris M.

------------------------------------------------------------
-------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the
chance to share your
opinions on IT & business topics through brief
surveys-and earn cash
http://www.techsay.com/default.
php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
mod-security-users mailing list
mod-security-userslists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-
security-users

We don't have any specific documentation for the Console.  I
would
recommend the following -

1) Check out the overview info here -
http://www.modsecurity.org/projects/console/index.html. 

2) Review my recent Blog post on the subject -
http://www.modsecurity.org/blog/archives
/2007/03/modsecurity_con_1.html.

Let me know if you have more specific questions.

-- 
Ryan C. Barnett
ModSecurity Community Manager
Breach Security: Director of Application Security Training
Web Application Security Consortium (WASC) Member
Author: Preventing Web Attacks with Apache
 
--------------
Web Security Threat Report Webinar on May 9, 2007 (12 pm
EST)
Learn More About the Breach Webinar Series:
http://www.breach.
com/webinars.asp
--------------
 

> -----Original Message-----
> From: mod-security-users-bounceslists.sourceforge.net
[mailto:mod-
> security-users-bounceslists.sourceforge.net] On
Behalf Of Chris
> Montesdeoca
> Sent: Monday, April 09, 2007 10:57 AM
> To: mod-security-userslists.sourceforge.net
> Subject: [mod-security-users] Free ModSecurity Console
Documentation
> 
> Greetings,
> 
> Does anyone have documentation of the modsecurity
console? I need to
> deploy it but I would like to read a bit about it
first, currently
I've
> deploy the modsecurity modules and I need a console to
gather the log
> info from the servers. I don't see in the website
documentation for
the
> console
> 
> Regards,
> 
> Chris M.
> 
>
------------------------------------------------------------
------------
-
> Take Surveys. Earn Cash. Influence the Future of IT
> Join SourceForge.net's Techsay panel and you'll get the
chance to
share
> your
> opinions on IT & business topics through brief
surveys-and earn cash
>
http://www.techsay.com/default.p
hp?page=join.php&p=sourceforge&CID=DEVDE
V
> _______________________________________________
> mod-security-users mailing list
> mod-security-userslists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/mod-
security-users

------------------------------------------------------------
-------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the
chance to share your
opinions on IT & business topics through brief
surveys-and earn cash
http://www.techsay.com/default.
php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
mod-security-users mailing list
mod-security-userslists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mod-
security-users