From 99c0349216f19f513e1306a4e0f66d0566e637ad Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Sat, 17 Nov 2012 07:24:29 +0100 Subject: mod_security: backport --- mod_security.spec | 37 ++++++++++++++++++++++++++++--------- 1 file changed, 28 insertions(+), 9 deletions(-) diff --git a/mod_security.spec b/mod_security.spec index 6fccb62..60fc3c6 100644 --- a/mod_security.spec +++ b/mod_security.spec @@ -7,12 +7,12 @@ Summary: Security module for the Apache HTTP Server Name: mod_security -Version: 2.6.8 -Release: 1%{?dist} +Version: 2.7.1 +Release: 3%{?dist} License: ASL 2.0 URL: http://www.modsecurity.org/ Group: System Environment/Daemons -Source: http://www.modsecurity.org/download/modsecurity-apache_%{version}.tar.gz +Source: https://github.com/downloads/SpiderLabs/ModSecurity/modsecurity-apache_%{version}.tar.gz Source1: mod_security.conf Requires: httpd httpd-mmn = %{_httpd_mmn} BuildRequires: httpd-devel libxml2-devel pcre-devel curl-devel lua-devel @@ -22,7 +22,6 @@ ModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding web applications from attacks. -%if 0%{?fedora} %package -n mlogc Summary: ModSecurity Audit Log Collector Group: System Environment/Daemons @@ -30,7 +29,6 @@ Requires: mod_security %description -n mlogc This package contains the ModSecurity Audit Log Collector. -%endif %prep %setup -q -n modsecurity-apache_%{version} @@ -67,15 +65,15 @@ install -Dp -m0644 10-mod_security.conf %{buildroot}%{_httpd_modconfdir}/10-mod_ # 2.2-style install -Dp -m0644 %{SOURCE1} %{buildroot}%{_httpd_confdir}/mod_security.conf %endif +install -m 700 -d $RPM_BUILD_ROOT%{_localstatedir}/lib/%{name} -%if 0%{?fedora} # mlogc install -d %{buildroot}%{_localstatedir}/log/mlogc install -d %{buildroot}%{_localstatedir}/log/mlogc/data install -m0755 mlogc/mlogc %{buildroot}%{_bindir}/mlogc install -m0755 mlogc/mlogc-batch-load.pl %{buildroot}%{_bindir}/mlogc-batch-load install -m0644 mlogc/mlogc-default.conf %{buildroot}%{_sysconfdir}/mlogc.conf -%endif + %clean rm -rf %{buildroot} @@ -90,8 +88,8 @@ rm -rf %{buildroot} %endif %dir %{_sysconfdir}/httpd/modsecurity.d %dir %{_sysconfdir}/httpd/modsecurity.d/activated_rules +%attr(770,apache,root) %dir %{_localstatedir}/lib/%{name} -%if 0%{?fedora} %files -n mlogc %defattr (-,root,root) %doc mlogc/INSTALL @@ -100,9 +98,30 @@ rm -rf %{buildroot} %attr(0770,root,apache) %dir %{_localstatedir}/log/mlogc/data %attr(0755,root,root) %{_bindir}/mlogc %attr(0755,root,root) %{_bindir}/mlogc-batch-load -%endif %changelog +* Sat Nov 17 2012 Remi Collet - 2.67.1-3 +- Update to 2.7.1, backport for remi repo and httpd 2.4 + +* Thu Nov 15 2012 Athmane Madjoudj 2.7.1-3 +- Add some missing directives RHBZ #569360 +- Fix multipart/invalid part ruleset bypass issue (CVE-2012-4528) + (RHBZ #867424, #867773, #867774) + +* Thu Nov 15 2012 Athmane Madjoudj 2.7.1-2 +- Fix mod_security.conf + +* Thu Nov 15 2012 Athmane Madjoudj 2.7.1-1 +- Update to 2.7.1 +- Remove libxml2 build patch (upstreamed) +- Update spec since upstream moved to github + +* Thu Oct 18 2012 Athmane Madjoudj 2.7.0-2 +- Add a patch to fix failed build against libxml2 >= 2.9.0 + +* Wed Oct 17 2012 Athmane Madjoudj 2.7.0-1 +- Update to 2.7.0 + * Sat Sep 29 2012 Remi Collet - 2.6.9-1 - Update to 2.6.9, backport for remi repo and httpd 2.4 -- cgit