Feature/Auto-update OWASP CRS on container start (ModSecurity WAF)#37
Open
Divyateja2709 wants to merge 8 commits intoOWASP:masterfrom
Open
Feature/Auto-update OWASP CRS on container start (ModSecurity WAF)#37Divyateja2709 wants to merge 8 commits intoOWASP:masterfrom
Divyateja2709 wants to merge 8 commits intoOWASP:masterfrom
Conversation
Added optional CRS update logic and improved logging for background processes.
Added initial README.md for CRS Auto Update script with planned features and assumptions.
Removed comment about Sidekick code generation.
Collaborator
|
I like that approach its makes sense |
Author
Hi @adrianwinckles , i have worked on chameleon persona system mainly . the first 7 prs were inclined towards the crs auto update side and the main focus was on developing websites mimicing cve s of drupal and wordpress |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Hi @adrianwinckles , this is my new PR .this adds an optional way to keep the OWASP Core Rule Set (CRS) up-to-date in the ModSecurity Apache WAF honeypot container.
Changes Made
-Dockerfile: installs necessary packages, and copies a new CRS updater script into the image and makes it executable.
-crs_update.sh (new): a script that will install/download the requested (or default latest) version of CRS in the target rules directory used by the container.
-modsec_entry.sh: this entry script will first call the CRS updater (with an environment flag), and then proceeds with the normal WAF start.
Why
Up-to-date CRS would mean improved coverage/log data. A user doesn't want to have to rebuild the image every time CRS has a new release.
How to Use
At container run time, set an environment variable, such as CRSUPDATE=true, and optionally the desired version using CRSVERSION=, then launch the container as usual.
could you please review this PR and confirm whether this CRS auto-update approach (Dockerfile + crs_update.sh + modsec_entry.sh changes) is a good direction to pursue for the project?