Best mod_security ruleset out now? Please share your good rules and config!
I have always been keeping an eye out for the best mod security rules out there. Recently i have been using the OWASP rules but some of them are broken out of the box and are outdated. I am no good at making any significant rules, just simple general request ones. So please no replies with "you should make your own"
What i am looking for is suggestions, configuration sharing, etc;
if you have a good ruleset, please tar it up, upload and link. And then post your module config, explain how it will log, etc;
Recently i find that using maldet with monitor users in conjunction with a good mod security ruleset does real good for web app security.
Please share what you got! I plan to test and find the best one, then make a package and walkthrough on my blogs and to use on client's servers.
Keep in mind that lightspeed doesnt actually support modsecurity, its their own implementation of a subset of the features.
Nevertheless, do you know what the error was? I can't say I've seen a set of rules with syntax errors with Apache, unless you try to run an out of date version of modsecurity with a set of rules written for a newer version. With lightspeed this happens all the time, because it doesnt support the full rule language.
Last edited by mikegotroot; 06-23-2011 at 07:58 PM.