0d1da42fcc
The modsecurity2 package provides an Apache module implementing a web application firewall (WAF) module. Based on initial work from Tom Marcuzzi <tom.marcuzzi@orolia.com> and Nicolas Carrier <nicolas.carrier@orolia.com> modsecurity2 will be superseeded sooner or later by modsecurity v3 ie. libmodsecurity [1] and its Apache connector [2]. libmodsecurity is already supported in Buildroot with its Nginx connector. According to the Apache connector web page and the discussion [3], the Apache connector is not ready for production use. [1] https://github.com/SpiderLabs/ModSecurity [2] https://github.com/SpiderLabs/ModSecurity-apache [3] https://github.com/SpiderLabs/ModSecurity-apache/issues/80 The best we can do now is to still use modsecurity2 (v2.9.x) for Apache: https://github.com/SpiderLabs/ModSecurity/tree/v2/master Signed-off-by: Herve Codina <herve.codina@bootlin.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
14 lines
486 B
Plaintext
14 lines
486 B
Plaintext
config BR2_PACKAGE_MODSECURITY2
|
|
bool "modsecurity2"
|
|
depends on BR2_PACKAGE_APACHE
|
|
select BR2_PACKAGE_LIBXML2
|
|
select BR2_PACKAGE_PCRE
|
|
help
|
|
ModSecurity is an open source, cross-platform web application
|
|
firewall (WAF) module. Known as the "Swiss Army Knife" of
|
|
WAFs, it enables web application defenders to gain visibility
|
|
into HTTP(S) traffic and provides a power rules language and
|
|
API to implement advanced protections.
|
|
|
|
https://github.com/SpiderLabs/ModSecurity
|