modsecurity-waf/nginx-waf/conf/00_mod_security.conf

25 lines
1.5 KiB
Plaintext

SecDefaultAction "log,deny,auditlog,phase:2,status:403"
modsecurity on;
modsecurity_rules_file /etc/httpd/modsecurity.d/tortix_waf.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/00_asl_whitelist.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/00_asl_x_searchengines.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/00_asl_y_searchengines.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/00_asl_z_antievasion.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/00_asl_zz_strict.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/01_asl_content.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/03_asl_dos.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/05_asl_exclude.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/10_asl_rules.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/11_asl_data_loss.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/12_asl_brute.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/20_asl_useragents.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/30_asl_antispam.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/31_asl_urispam.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/50_asl_rootkits.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/51_asl_rootkits.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/60_asl_recons.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/61_asl_recons_dlp.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/98_asl_jitp.conf;
modsecurity_rules_file /etc/httpd/modsecurity.d/99_asl_jitp.conf;