Option to Enable ModSec and apply OWASP ModSecurity Core Rule Set
ParallaxCoder opened this issue · comments
Hi,
Can add an option to enable ModSec and apply OWASP ModSecurity Core Rule Set (https://github.com/coreruleset/coreruleset/archive/refs/tags/v3.3.5.zip) via script flag/option after OLS installation. (https://openlitespeed.org/kb/openlitespeed-modsecurity-module/)
Your ols1clk script saves tons of time and I like the minimal one-click approach without cluttered control panels.
Thank you for your work! :)
@ParallaxCoder
The latest commit has this feature included, feel free to give it a try.
@Code-Egg this worked like a charm! Thank you. 👍
FYI: this downloads v3.3.4 ruleset and that version is affected by CVE-2023-38199, there is a latest version with fixes v3.3.5 (https://github.com/coreruleset/coreruleset/releases/tag/v3.3.5)
Good to know it works, thanks, just updated the version. Issue close.