Enabling mod_security2 / owasp-crs fails

Keywords: LAMP/MAMP/WAMP - AWS - Technical issue - Services (Apache, MariaDB, MySQL…)

bnsupport ID: 3e5cf00e-339f-3ad9-4c8c-ef8404ec892c

bndiagnostic output:

? Apache: Found possible issues
? Resources: Found possible issues
https://docs.bitnami.com/general/apps/wordpress/troubleshooting/debug-errors-apache/
https://docs.bitnami.com/bch/apps/moodle/troubleshooting/deny-connections-bots-apache/

bndiagnostic failure reason: The suggested guides are not related with my issue

Description:
Installed
libapache2-mod-security2/oldstable,now 2.9.3-1 amd64 [installed]

enabled module security2 and module unique_id

included conf in httpd.conf like this:

Include "/opt/bitnami/apache/conf/security2.conf

apachectl -t
output:

httpd: Syntax error on line 160 of /opt/bitnami/apache/conf/httpd.conf: Cannot load modules/mod_security2.so into server: /opt/bitnami/apache/modules/mod_security2.so: undefined symbol: apr_crypto_block_cleanup

Hi @el_profi,

You installed the libapache2-mod-security2 system’s package when the Bitnami component doesn’t use any of those packages to work. Please note that we build our components from scratch and do not rely on the system’s packages for the different servers to work. If you want to enable mod_security, please follow this guide in our documentation

https://docs.bitnami.com/general/infrastructure/lamp/configuration/enable-modules/#mod_security

Happy to help!


Was my answer helpful? Click on :heart:

Thx, but your suggestion does not help at all, since owasp clearly requires mod_security 2.9:

https://coreruleset.org/installation/

Hi @el_profi,

As I mentioned in your other ticket, it’s not possible to include mod_security 2.9 now without recompiling all the components. We will work on that and let you know when the solution includes mod_security 2.x again.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.