#190 Setting a WAF with modsecurity for nginx
Opened 6 months ago by rlengland. Modified a month ago

Article Summary:

Showcase newly added nginx-mod-modsecurity package that is a connector for libmodsecurity (ModSecurity v3). modsecurity for httpd has been part of Fedora/RHEL since many years ago, so sould like to focus on nginx.

Article Description:
The proposal would be to briefly explain what a WAF does and how can help to secure webservers, introduce (lib)modsecurity and continue with installing nginx’s modsecurity conector nginx-mod-modsecurity.

The flow of the article could be:

  • What is a WAF?
  • What is modsecurity?
  • Configure libmodsecurity and nginx-mod-modsecurity
  • Create a custom rule to test the install
  • Extend with with new rules (pending on a proposal to mod_security_crs


Metadata Update from @rlengland:
- Issue assigned to mikelo2
- Issue tagged with: article, needs-image

6 months ago

@mikelo2 do you have a status on your article?

Busy at work, will try to have it by mid June or end of June.

@mikelo2 any update on this article?

Login to comment on this ticket.

Boards 1
articles Status: ideas