You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
i just installed ModSecurity (2.9.7) and OWASP_CRS (3.3.4) for my Nextcloud installation.
As expected, nothing worked anymore, which is why I tried to install this plugin by following the mentioned https://coreruleset.org/docs/concepts/plugins/#how-to-install-a-plugin
So I created the crs/plugins folder and placed the config files inside that folder:
media@media-server:~$ ls -l /etc/modsecurity/crs/plugins/
total 28
-rw-r--r-- 1 root root 22806 Mai 9 12:14 nextcloud-rule-exclusions-before.conf
-rw-r--r-- 1 root root 1634 Mai 9 12:14 nextcloud-rule-exclusions-config.conf
But I saw no difference in appearance (browser apps do not work, desktop client can't connect) and in the audit.log, as if the plugin does not load at all:
So I went digging for a bit.
Apache should load the CRS from here:
media@media-server:~$ cat /etc/apache2/mods-enabled/security2.conf
<IfModule security2_module>
...
# Include OWASP ModSecurity CRS rules if installed
IncludeOptional /usr/share/modsecurity-crs/owasp-crs.load
</IfModule>
And in the .load file it should load the config files:
media@media-server:~$ cat /usr/share/modsecurity-crs/owasp-crs.load
##
## This file loads OWASP CRS's rules when the package is installed
## It is Included by libapache2-mod-security2
##
Include /etc/modsecurity/crs/crs-setup.conf
IncludeOptional /etc/modsecurity/crs/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
Include /usr/share/modsecurity-crs/rules/*.conf
IncludeOptional /etc/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
I felt like there should be a Include in that file for the plugins, so i put those in myself:
Include /etc/modsecurity/crs/plugins/-config.conf
Include /etc/modsecurity/crs/plugins/-before.conf
Hi,
i just installed ModSecurity (2.9.7) and OWASP_CRS (3.3.4) for my Nextcloud installation.
As expected, nothing worked anymore, which is why I tried to install this plugin by following the mentioned https://coreruleset.org/docs/concepts/plugins/#how-to-install-a-plugin
So I created the crs/plugins folder and placed the config files inside that folder:
But I saw no difference in appearance (browser apps do not work, desktop client can't connect) and in the audit.log, as if the plugin does not load at all:
So I went digging for a bit.
Apache should load the CRS from here:
And in the .load file it should load the config files:
I felt like there should be a Include in that file for the plugins, so i put those in myself:
Include /etc/modsecurity/crs/plugins/-config.conf
Include /etc/modsecurity/crs/plugins/-before.conf
And now it works.
That took me a bit of time so I thought I would share this here, it would be nice if this information could be put into https://github.com/coreruleset/nextcloud-rule-exclusions-plugin#installation so others can save some time and hassle :)
The text was updated successfully, but these errors were encountered: