OSDN -- 開發和下載開源軟體
繁體中文翻譯狀態 translation status for zh-tw

RSS
Download List

專案描述

ModSecurity is an intrusion detection and
prevention engine for Web applications (sometimes called a Web application firewall). Operating embedded or as part of an Apache reverse proxy, it increases Web application security, protecting Web applications from known and unknown attacks. It is flexible and easy to configure. It monitors HTTP traffic (including POST payloads), detects or prevents attacks, enhances logging, performs anti-evasion, and allows administrators to create custom rules to suit their specific needs. It excels in HTTP traffic monitoring and just-in-time vulnerability patching.

System Requirements

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2010-02-06 16:22
2.5.12

This release fixes several important issues to help prevent a detection bypass and denial of service attacks against ModSecurity. Quite a few small but notable bugs were fixed. The latest Core Ruleset (2.0.5) is included.
標籤: Minor security fixes, Minor bugfixes, Minor feature enhancements

2009-11-07 17:31
2.5.11

This release fixes a multipart parsing issue that has the potential to allow bypassing the rules engine. This bypass can be avoided via some simple rules, however. Other changes include a rules update (CRS 2.0.3) and some minor cleanup in build, mlogc, persistence, and the output filter ordering.
標籤: Minor bugfixes, Minor security fixes

2009-09-25 17:37
2.5.10

This release fixes a number of small issues. Notable issues that have been fixed are a cleaner build process, fixes to mlogc to build on Windows and allow more reliable SSL negotiation to the console, less verbose logging when using anomaly scoring with CRS v2.x, and a feature to allow easier use with Apache mpm-itk.
標籤: Bugfixes, new features

2009-08-26 21:00
2.5.10-dev3

This release cleans up the build scripts and adds some features to better manage audit log permissions (especially with mpm-itk).
標籤: Development, Bugfixes, new features

2009-08-13 17:25
2.5.10-dev2

This development release fixes some build issues with mlogc, a potential configuration crash, and SecRuleUpdateActionById. It includes the latest release of the Core Rule Set (CRS), 2.0.1.
標籤: Development, Minor bugfixes

Project Resources

Project Page 首頁