From 44bb45927fa4c2917141ad64e2489f128303f66e Mon Sep 17 00:00:00 2001 From: sbyrd Date: Tue, 10 Dec 2024 17:42:17 -0500 Subject: [PATCH] inital --- modsecurity-init.conf | 24 ++++++++++++++++++++++++ 1 file changed, 24 insertions(+) create mode 100644 modsecurity-init.conf diff --git a/modsecurity-init.conf b/modsecurity-init.conf new file mode 100644 index 0000000..8246a4e --- /dev/null +++ b/modsecurity-init.conf @@ -0,0 +1,24 @@ +SecDefaultAction "log,deny,auditlog,phase:2,status:403" +modsecurity on; +modsecurity_rules_file modsecurity.d/nginx-waf/conf/tortix_waf.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/00_asl_whitelist.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/00_asl_x_searchengines.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/00_asl_y_searchengines.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/00_asl_z_antievasion.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/00_asl_zz_strict.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/01_asl_content.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/03_asl_dos.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/05_asl_exclude.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/10_asl_rules.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/11_asl_data_loss.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/12_asl_brute.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/20_asl_useragents.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/30_asl_antispam.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/31_asl_urispam.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/50_asl_rootkits.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/51_asl_rootkits.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/60_asl_recons.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/61_asl_recons_dlp.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/98_asl_jitp.conf; +modsecurity_rules_file modsecurity.d/nginx-waf/99_asl_jitp.conf; +