Avatar

tara shinn

  • Total activity 30
  • Last activity
  • Member since
  • Following 0 users
  • Followed by 0 users
  • Votes 0
  • Subscriptions 16

Activity overview

Latest activity by tara shinn
  • Avatar

    tara shinn created an article,

    Kernel Messages/Errors

    kernel: xt_lscan: Warning: Pure RST received [edit]If you are using the ASL kernel This means that the low level portscan detector in ASL has detected a RST packet from a source that does not appea...

  • Avatar

    tara shinn created an article,

    Apache errors messages

    Error creating rule: Could not add entry 1.2.3.45.6.7.8 in line XX of file /etc/asl/whitelist to IP list This means that there is a bogus entry in your /etc/asl/whitelist file. The format of the fi...

  • Avatar

    tara shinn created an article,

    mod_evasive

    Tuning mod evasive Please see the Mod_evasive article. [edit]cpanel and mod_evasive Currently mod_evasive does not work with cpanel. You may be able to install it manually, but ASL will not be able...

  • Avatar

    tara shinn created an article,

    rkhunter errors and messages [edit]

    Start Rootkit Hunter Update --------------------- This is just the header line for the rootkit hunter email letting you know its updated itself. You do not need to do anything and this event is nor...

  • Avatar

    tara shinn created an article,

    Installing custom modsecurity rules

    Discussion If you need to create your own custom rules, do not change the asl*conf files. These files will be overwritten by updates. The use of "asl" in the filename is also reserved. Do not name...

  • Avatar

    tara shinn created an article,

    How to Customize an Atomic Rule

    If you need to customize a rule do not change the AP conf files. These files will be overwritten by updates. The use of "asl" or "awp" in the filename is also reserved.  If you need to change a ru...

  • Avatar

    tara shinn created an article,

    Changing the action for a rule

    You can also change the default action for a rule by using the SecRuleActionById directive. Changing a rule to be detect only by ID To change a rule to only detect, but not block attacks, simply ch...

  • Avatar

    tara shinn created an article,

    Modifying/Ignoring Mod_Security Rules

      Note: AP users should disable rules from the UI. There is no need to create custom rules, apache configuration files or other customizations when using AP, as AP supports disabling any rule on bo...

  • Avatar

    tara shinn created an article,

    Check for leaking web applications

    Web applications can and do leak memory. Check to make sure your memory leak isnt from a web application. Or a web application isnt amplifying a memory leak in something else.

  • Avatar

    tara shinn created an article,

    Ensure that modsecurity is built correctly

    Solution 1) Install ASL ASL will setup a correctly built version of modsecurity. Solution 2) Install a modsecurity build from our rpm repositories. You can download modsecurity here. Solution 3) In...