2022-10-25 13:48:10 +02:00
|
|
|
# Install Modsecurity in a Docker container;
|
|
|
|
FROM ubuntu:20.04 as production
|
|
|
|
ARG DEBIAN_FRONTEND=noninteractive
|
|
|
|
# update/upgrade your system
|
|
|
|
RUN apt-get update -y
|
|
|
|
|
|
|
|
# Install Required Dependencies
|
|
|
|
RUN apt-get install -y g++ flex bison curl apache2-dev \
|
|
|
|
doxygen libyajl-dev ssdeep liblua5.2-dev \
|
|
|
|
libgeoip-dev libtool dh-autoreconf \
|
|
|
|
libcurl4-gnutls-dev libxml2 libpcre++-dev \
|
|
|
|
libxml2-dev git wget tar apache2 \
|
|
|
|
certbot python3-certbot-apache
|
|
|
|
|
|
|
|
# Download LibModsecurity
|
|
|
|
RUN wget https://github.com/SpiderLabs/ModSecurity/releases/download/v3.0.8/modsecurity-v3.0.8.tar.gz
|
|
|
|
|
|
|
|
# Extract the Downloaded File
|
|
|
|
RUN tar xzf modsecurity-v3.0.8.tar.gz && rm -rf modsecurity-v3.0.8.tar.gz
|
|
|
|
|
|
|
|
# Compile and Install LibModsecurity
|
|
|
|
RUN cd modsecurity-v3.0.8 && \
|
|
|
|
./build.sh && ./configure && \
|
|
|
|
make && make install
|
|
|
|
|
|
|
|
# Install ModSecurity-Apache Connector
|
|
|
|
RUN cd ~ && git clone https://github.com/SpiderLabs/ModSecurity-apache
|
|
|
|
|
|
|
|
RUN cd ~/ModSecurity-apache && \
|
|
|
|
./autogen.sh && \
|
|
|
|
./configure --with-libmodsecurity=/usr/local/modsecurity/ && \
|
|
|
|
make && \
|
|
|
|
make install
|
|
|
|
|
|
|
|
# Load the Apache ModSecurity Connector Module
|
|
|
|
RUN echo "LoadModule security3_module /usr/lib/apache2/modules/mod_security3.so" >> /etc/apache2/apache2.conf
|
|
|
|
|
|
|
|
# Configure ModSecurity
|
|
|
|
RUN mkdir /etc/apache2/modsecurity.d && \
|
|
|
|
cp modsecurity-v3.0.8/modsecurity.conf-recommended /etc/apache2/modsecurity.d/modsecurity.conf && \
|
|
|
|
cp modsecurity-v3.0.8/unicode.mapping /etc/apache2/modsecurity.d/ && \
|
|
|
|
sed -i 's/SecRuleEngine DetectionOnly/SecRuleEngine On/' /etc/apache2/modsecurity.d/modsecurity.conf
|
|
|
|
ADD modsec_rules.conf /etc/apache2/modsecurity.d/
|
|
|
|
|
|
|
|
# Install OWASP ModSecurity Core Rule Set (CRS) on Ubuntu
|
|
|
|
RUN git clone https://github.com/SpiderLabs/owasp-modsecurity-crs.git /etc/apache2/modsecurity.d/owasp-crs && \
|
2022-10-31 10:45:35 +01:00
|
|
|
cp /crs-setup.conf /etc/apache2/modsecurity.d/owasp-crs/crs-setup.conf
|
2022-10-25 13:48:10 +02:00
|
|
|
|
|
|
|
# Activate ModSecurity
|
|
|
|
RUN mv /etc/apache2/sites-available/000-default.conf /etc/apache2/sites-available/000-default.conf.old
|
|
|
|
ADD 000-default.conf /etc/apache2/sites-available/
|
|
|
|
|
|
|
|
RUN a2enmod proxy_http
|
|
|
|
|
|
|
|
EXPOSE 80
|
|
|
|
CMD apachectl -D FOREGROUND
|
|
|
|
|
|
|
|
# Testing ModSecurity
|
|
|
|
#curl http://<SERVER-IP/DOMAIN>/index.php?exec=/bin/bash
|