Since last night’s(26.02) update i’m getting this error
Starting httpd: Syntax error on line 4061 of /etc/httpd/modsecurity.d/cwaf/rules/cwaf_05.conf:
Error creating rule: Failed to resolve operator: detectSQLi
Can anyone help ?
Nervermind, I was using 2.7.3 version and apparently that function came up on 2.7.4.
Yep, always make sure you are using the latest ModSecurity.
This is a problem for RHEL/CentOS servers because the official repositories only offer mod_security-2.7.3.
Is there a workaround so we can use the more recent rulesets without needing to use an unofficial version of the mod_security package?
Thanks for your reply.
Are you suggesting that we use the ART 2.8.0 mod_security packages instead of 2.7.3-3 from EPEL?
Yes. 2.8.0 is improved greatly. And 2.9.0 is on the way 