mod_security

Description:Application firewall and intrusion detection for Apache
License: GPL-2, Apache-2.0
Homepage:http://www.modsecurity.org/
Location:Portage
Legend:
  • + - stable
  • ~ - unstable
  • M - hardmask
alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86
2.9.3 diff - ~ - - - - - - - - - - ~
2.9.1-r1 - + - - - - - - - - - - +

USE flags

  • doc - Add extra documentation (API, Javadoc, etc). It is recommended to enable per package instead of globally
  • fuzzyhash - Support fuzzy hash computations (to detect malware, for example) using the app-crypt/ssdeep package.
  • geoip - Pull in dev-libs/geoip for use by the SecGeoLookupDb directive.
  • jit - Add support for the PCRE Just-in-Time optimisation, as enabled by dev-libs/libpcre with jit USE flag enabled. Might not be available on hardened systems.
  • json - Suppose JSON in the request body parser through dev-libs/yajl.
  • lua - Enable Lua scripting support
  • mlogc - Build and install the ModSecurity Audit Log Collector (mlogc).

Security Advisory

Date Severity Title
almost 11 years normal ModSecurity: Denial of Service
about 13 years low Apache mod_security: Rule bypass

Also available in: Atom

Thank you!