mod_security 2.5.11 www =32

An intrusion detection and prevention engine
Maintained by: araujo@FreeBSD.org
Port Added: 06 Jun 2003 13:05:36
Also Listed In: security

---

---

ModSecurity is an embeddable web application firewall. It provides
protection from a range of attacks against web applications and allows
for HTTP traffic monitoring and real-time analysis with no changes to
existing infrastructure.

It is also an open source project that aims to make the web application
firewall technology available to everyone. 

WWW: http://www.modsecurity.org/

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

Required To Build: www/apache20, devel/pkg-config
Required To Run: www/apache20, devel/pkg-config
Required Libraries: devel/pcre, devel/apr, textproc/libxml2

---

To install the port: cd /usr/ports/www/mod_security/ && make install clean
To add the package: pkg_add -r mod_security

---

Configuration Options

===> The following configuration options are available for mod_security-2.5.11:
     LUA=off (default) "Embedded Lua language support"
     MLOGC=off (default) "Build ModSecurity Log Collector"
===> Use 'make config' to modify these settings

---

Master Sites:

http://heanet.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://sunet.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://iweb.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://switch.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://surfnet.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://kent.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://freefr.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://voxel.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://jaist.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://osdn.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://nchc.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://transact.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://softlayer.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://internode.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://biznetnetworks.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

http://ufpr.dl.sourceforge.net/project/mod-security/modsecurity-apache/2.5.11/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

• 2008-06-24

  Affects: users of www/mod_security

  Author: Marcelo Araujo <araujo@FreeBSD.org>

  Reason: 
    The mod_security port has been updated from 1.9.4 to 2.5.5. Branch 1.9.x
    will not receive any further updates; all users must update mod_security
    port to versions 2.1 or 2.5.
  
    You can get more information about update issues at:
  
  	http://www.modsecurity.org/documentation/
  
  

- Update to 2.5.11

PR:             ports/140463
Submitted by:   Chris Petrik <chris@officialunix.com>
Approved by:    maintainer timeout (araujo; 1 month)

- Switch SourceForge ports to the new File Release System: categories starting
with W

- Fix a linker error when you use mlogc with pthread in osversion
  less than 700000.

Submitted by:   Mel Flynn <mel.flynn+fbsd.questions@mailing.thruhere.net>
                (private mail)

- Support updated to latest lang/lua library version.
- Fixed a wrong prefix when use WITH_MLOGC=yes.

PR:             ports/137214, ports/137215
Submitted by:   Oleg Ginzburg <oleg.ginzburg@nevosoft.ru>

- Fix the issue when you set a custom PREFIX or LOCALBASE.

Reported by:    itetcu (QAT)
Thanks to:      pgollucci

- Mark remaining mod_* ports MAKE_JOBS_SAFE=yes

PR:             ports/134611
Approved by:    pav (#bsdports)

- Update to 2.5.9.
- Update MASTER_SITES.

Bump the version of the curl shared library after the ftp/curl update
to 7.19.2.
Bump PORTREVISION, even on the ports that do not have a versioned
dependency, since the binaries will most probably still stop working.

- Add WITH_MLOGC knob. [0]
- Update to 2.5.7.

PR:             ports/126559 [0]
Submitted by:   Tomoyuki Sakurai <cherry@trombik.org>

- Add support a LUA scripts.
- Bump PORTREVISION.

PR:             ports/125789
Submitted by:   Tomoyuki Sakurai <cherry@trombik.org>

- Chase apr shlib bump

- The branch 1.9 not is more supported, from now on mod_security receive a new
series called 2.5.
x.
- Take maintainership.

Thanks to Alex Dupre which maintained this port by a long time.

PR:             ports/124828, ports/124830
Submitted by:   araujo (myself)
Approved by:    Alex Dupre <ale@FreeBSD.org> (maintainer)
Thanks to:      WIKTORZAK Cedric <cedric@synapse-interactive.fr>

Update to 1.9.4 release.

PR:             ports/100079
Submitted by:   Yi-Huan Chan <yhchan@csie.nctu.edu.tw>

Update to 1.9.2 release.

PR:             ports/92168
Submitted by:   Gary Palmer <freebsd-bugs@in-addr.com>

Update to 1.9.1 release.

Update to 1.8.7 release.

PR:             ports/79171
Submitted by:   Toni Viemero <toni.viemero@iki.fi>

Update to 1.8.6 release.

Update to 1.8.4 release.

Update to 1.8.2 release.

Update to 1.8 release.

Update to 1.7.6 release.

Update to 1.7.5 release.

Switch to my @FreeBSD.org email address.

Approved by:    nork (mentor)

Update to 1.7.4 release.

PR:             ports/61017
Submitted by:   ale (maintainer)

Update to 1.7.3.
Add a newline after COMMENT section, change DISTNAME.

Submitted by:   Alex Dupre <sysadmin@alexdupre.com> (maintainer)
PR:             59193

Use the new Apache bits from bsd.port.mk.

Submitted by:   dinoex

Security update to 1.7.2.
This release fixes several bugs, one of which is
a potentially exploitable local vulnerability
(Apache 2.x users only).

Submitted by:   Alex Dupre <sysadmin@alexdupre.com> (maintainer)
PR:             58681

Fix installation procedure: modsecurity Inc. released a bug-fix,
but forgot to bump version number of pdf doc.
Do not bump PORTREVISION.

Notify from:    bento via kris
No cookie for:  maintainer

Update to latest bugfix release: 1.7.1

Submitted by:   Alex Dupre <sysamin@alexdupre.com> (maintainer)
PR:             58374

Update to 1.7.

Submitted by:   Alex Dupre <sysadmin@alexdupre.com> (maintainer)
PR:             58307

Update to 1.5.1 release.

PR:             54344
Submitted by:   Alex Dupre <sysadmin@alexdupre.com>

> the installed file is *always* mod_security.so, even with
> apache2...only the filename passed to apxs is different.

You learn everyday something new about Apache, even if it means you
have to admit you were too enthousiastic about getting things udpated.

Submitted by:   Alex Dupre <sysadmin@alexdupre.com>

Apache2 has .la, apache13 has .so
Noticed by: Alex Dupre <sysadmin@alexdupre.com>

[New Port] www/mod_security

        ModSecurity is an open source intrustion detection and
        prevention engine for web applications. It operates embedded
        into the web server, acting as a powerful umbrella - shielding
        web applications from attacks.

        WWW: http://www.modsecurity.org/

        It supports both Apache 1.3 and Apache 2.0.

PR:             ports/52937
Submitted by:   Alex Dupre <sysadmin@alexdupre.com>

5 vulnerabilities affecting 16 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities