Discover Centmin Mod today
Register Now

Beta Branch part 2update optional ModSecurity OWASP in 130.00beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Sep 21, 2022.

  1. eva2000

    eva2000 Administrator Staff Member

    49,586
    11,382
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,686
    Local Time:
    12:23 PM
    Nginx 1.21.x
    MariaDB 10.x
    part 2update optional ModSecurity OWASP in 130.00beta01

    - update optional ModSecurity OWASP core rule set version to 3.3.4 for a regression fix to previous 3.3.3 security fixes . Only applies to Centmin Mod users running with configured Mod Security Nginx module with NGINX_MODSECURITY='y' set in persistent config file /etc/centminmod/custom_config.inc and have re-ran centmin.sh menu option 4 to recompile Nginx with ModSecurity support
    - For existing Centmin Mod users if you have NGINX_MODSECURITY='y' set in persistent config file /etc/centminmod/custom_config.inc, run cmupdate command if you're on 130.00beta01 and then re-run centmin.sh menu option 4 to recompile Nginx with ModSecurity support and updated ModSecurity OWASP core rule set version
    - Centmin Mod 124.00stable and 130.00beta01 by default have ModSecurity disabled out of the box with NGINX_MODSECURITY='n' so only applies if you have NGINX_MODSECURITY='y' set in persistent config file /etc/centminmod/custom_config.inc

    Continue reading...

    130.00beta01 branch

    Support Centmin Mod


    If you find Centmin Mod useful, please help support Centmin Mod