ModSecurity for Apache 2.4.34 Failing with Invalid Command ‘SecRuleEngine’

I have A Ubuntu 18.04 server, installed Apache 2.4.34, and have compiled ModSecurity 3 with the apache module.

I can successfully load the module, by adding:

LoadModule security3_module modules/mod_security3.so

to my httpd.conf

and testing with httpd -M shows the module is loading

My config is standard, nothing other than pulling from the v3 rules repo, and moving the config files around to where they should go.

As soon as I attempt to load the config I receive:

AH00526: Syntax error on line 7 of /opt/ModSecurity/modsecurity.conf:
Invalid command 'SecRuleEngine', perhaps misspelled or defined by a module not included in the server configuration

and my config is simply:

<IfModule security3_module>
    IncludeOptional /opt/ModSecurity/modsecurity.conf
</IfModule>

Where /opt/ModSecurity/modsecurity.conf contains the standard stuff from the repo.

What am I doing wrong?

(let me know if you need more info)

<VirtualHost *:80> ServerName foobar.com ... <Directory /path/to/docroot> ... modsecurity on modsecurity_rules_file /path/to/modsecurity.conf # optional: modsecurity_rules_file /path/to/crs-rules.load </Directory> .... </VirtualHost>

ModSecurity for Apache 2.4.34 Failing with Invalid Command ‘SecRuleEngine’

Best Answer

Related Topic

Best Answer

Related Solutions

Freebsd – How to get access to Icinga on Apache 2.4

SSLv2_server_method apache php5 error

Related Topic