IncludeOptional error "modsecurity_rules_file" directive Rules error

Question

IncludeOptional error "modsecurity_rules_file" directive Rules error

muuvmuuv opened this issue 9 months ago · 1 comments

We have installed nginx-extras, libnginx-mod-http-modsecurity/stable,now 1.0.3-1+b2 and libnginx-mod-http-modsecurity/stable,now 1.0.3-1+b2.

Enabling (uncommenting) the ModSecurity lines produces the following error:

root@xxxxx:~# nginx -t
2025/01/27 09:43:06 [emerg] 80509#80509: "modsecurity_rules_file" directive Rules error. File: /etc/nginx/modsecurity_includes.conf. Line: 8. Column: 81. Invalid input:  IncludeOptional /etc/modsecurity/crs/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf in /etc/nginx/sites-enabled/default.conf:26
nginx: configuration file /etc/nginx/nginx.conf test failed

I have tested that if I change IncludeOptional to just Include it works.

Answer 1 · 2025-01-27T09:37:37.000Z

Hi @muuvmuuv,

thanks for this report.
Unfortunately this is a know issue: libmodsecurity only knows Include, but not the IncludeOptional directive.

We should consider to add that.