Page 1 of 1

Will CMC work when rules are "included"

Posted: 10 Jan 2014, 21:38
by vicos
Will cmc work when the rulesets are specified in the config file via Include directives as opposed to the actual rules being posted in the config file.

For example, here is my mod_sec config:

SecRequestBodyAccess On
SecDataDir /var/tmp
SecTmpDir /var/tmp
SecPcreMatchLimit 150000
SecPcreMatchLimitRecursion 150000
Include "/usr/local/apache/conf/modsec2/00_asl_whitelist.conf"
Include "/usr/local/apache/conf/modsec2/05_asl_exclude.conf"
Include "/usr/local/apache/conf/modsec2/10_asl_antimalware.conf"
Include "/usr/local/apache/conf/modsec2/10_asl_rules.conf"
Include "/usr/local/apache/conf/modsec2/11_asl_data_loss.conf"
Include "/usr/local/apache/conf/modsec2/20_asl_useragents.conf"
Include "/usr/local/apache/conf/modsec2/30_asl_antispam.conf"
Include "/usr/local/apache/conf/modsec2/30_asl_antispam_referrer.conf"
Include "/usr/local/apache/conf/modsec2/40_asl_apache2-rules.conf"
Include "/usr/local/apache/conf/modsec2/50_asl_rootkits.conf"
Include "/usr/local/apache/conf/modsec2/60_asl_recons.conf"
Include "/usr/local/apache/conf/modsec2/99_asl_exclude.conf"
Include "/usr/local/apache/conf/modsec2/99_asl_jitp.conf"
Include "/usr/local/apache/conf/modsec2/99_asl_redactor.conf"

Re: Will CMC work when rules are "included"

Posted: 10 Jan 2014, 22:06
by ForumAdmin
Yes, it does.