Ansible Role to install and configure Apache mod_security2 for Ubuntu.
None.
Available variables are listed below, along with default values (see defaults/main.yml):
Set the Apache config folder.
apache_conf_dir: "/etc/apache2/conf-available"
Set the location of the log file.
sec_audit_log: "/var/log/apache/apache_audit_log.log"
Configure which parts of the HTTP request and response will be logged.
sec_audit_log_parts: "ABIFHZ" # # ABCDEFGHIJKZ
Set the HTTP "X-Powered-By" header value.
sec_server_signature: "Apache 7000"
Set which rules to not log.
sec_rule_remove_by_id: "960017,970901,960015"
Must have installed Apache. I would suggest:
geerlingguy.apache
- hosts: all
roles:
- apolloclark.apache-modsecurity
MIT / BSD
This role was created in 2017 by Apollo Clark