Need some help with mod_security
I have a CentOS 6.2 server with a website on it. I just installed mod_security. It seems to work OK (well the site does!), but I'm getting some strange error messages in my logs : -
ModSecurity: Failed to access DBM file "/etc/httpd/logs//global": ModSecurity: Failed to access DBM file "/etc/httpd/logs//ip": Permission denied I'm by no means a Linux 'expert', I can find my way around, but I have NO idea what a // means in a path, or why I'm getting these messages. Can someone please advise me (in simple language) how to fix this? |
//
hello,
// = / you normally see this when a script is missing a variable for a path. x/y/$z/test where $z='' ModSecurity is trying to access two DBM files in /etc/httpd/logs/ They are ether missing or the file and or directory permissions are wrong |
Well neither file exists. or are they folders? What should the permissions be if I create them or is there some other way to create them? Mod_security is a part of the CentOS repositories, because I installed it with yum. Why didn't it create all the folders / files it should have done - bug perhaps?
|
Quote:
As for Quote:
Hammering maybe but as long as the server returns ^3xx or ^4xx return codes that's OK: they're going nowhere with their incessant scanning. OTOH it's highly doubtful they exhaust your bandwidth (do some accounting and show?) but you could (temporarily) rate-limit traffic, see here and there. |
All times are GMT -5. The time now is 09:52 PM. |