Giters

litespeedtech / ols1clk

One click installation of Open LiteSpeed

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Option to Enable ModSec and apply OWASP ModSecurity Core Rule Set

ParallaxCoder opened this issue · comments

commented

Hi,

Can add an option to enable ModSec and apply OWASP ModSecurity Core Rule Set (https://github.com/coreruleset/coreruleset/archive/refs/tags/v3.3.5.zip) via script flag/option after OLS installation. (https://openlitespeed.org/kb/openlitespeed-modsecurity-module/)

Your ols1clk script saves tons of time and I like the minimal one-click approach without cluttered control panels.
Thank you for your work! :)

commented

@ParallaxCoder
The latest commit has this feature included, feel free to give it a try.

commented

@Code-Egg this worked like a charm! Thank you. 👍

FYI: this downloads v3.3.4 ruleset and that version is affected by CVE-2023-38199, there is a latest version with fixes v3.3.5 (https://github.com/coreruleset/coreruleset/releases/tag/v3.3.5)

commented

Good to know it works, thanks, just updated the version. Issue close.