tara shinn
- Total activity 30
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 16
Activity overview
Latest activity by tara shinn-
tara shinn created an article,
Kernel Messages/Errors
kernel: xt_lscan: Warning: Pure RST received [edit]If you are using the ASL kernel This means that the low level portscan detector in ASL has detected a RST packet from a source that does not appea...
-
tara shinn created an article,
Apache errors messages
Error creating rule: Could not add entry 1.2.3.45.6.7.8 in line XX of file /etc/asl/whitelist to IP list This means that there is a bogus entry in your /etc/asl/whitelist file. The format of the fi...
-
tara shinn created an article,
mod_evasive
Tuning mod evasive Please see the Mod_evasive article. [edit]cpanel and mod_evasive Currently mod_evasive does not work with cpanel. You may be able to install it manually, but ASL will not be able...
-
tara shinn created an article,
rkhunter errors and messages [edit]
Start Rootkit Hunter Update --------------------- This is just the header line for the rootkit hunter email letting you know its updated itself. You do not need to do anything and this event is nor...
-
tara shinn created an article,
Installing custom modsecurity rules
Discussion If you need to create your own custom rules, do not change the asl*conf files. These files will be overwritten by updates. The use of "asl" in the filename is also reserved. Do not name...
-
tara shinn created an article,
How to Customize an Atomic Rule
If you need to customize a rule do not change the AP conf files. These files will be overwritten by updates. The use of "asl" or "awp" in the filename is also reserved. If you need to change a ru...
-
tara shinn created an article,
Changing the action for a rule
You can also change the default action for a rule by using the SecRuleActionById directive. Changing a rule to be detect only by ID To change a rule to only detect, but not block attacks, simply ch...
-
tara shinn created an article,
Modifying/Ignoring Mod_Security Rules
Note: AP users should disable rules from the UI. There is no need to create custom rules, apache configuration files or other customizations when using AP, as AP supports disabling any rule on bo...
-
tara shinn created an article,
Check for leaking web applications
Web applications can and do leak memory. Check to make sure your memory leak isnt from a web application. Or a web application isnt amplifying a memory leak in something else.
-
tara shinn created an article,
Ensure that modsecurity is built correctly
Solution 1) Install ASL ASL will setup a correctly built version of modsecurity. Solution 2) Install a modsecurity build from our rpm repositories. You can download modsecurity here. Solution 3) In...