github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-16 08:27:10 +03:00
Code Issues Packages Projects Releases Wiki Activity

Updated Reference Manual (mediawiki)

brenosilva
2013-03-27 18:18:44 -07:00
parent 90ccb95349
commit 8a86253c25
1 changed files with 7 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
Reference-Manual.mediawiki

@@ -90,23 +90,21 @@ Before you begin with installation you will need to choose your preferred instal
The following few pages will give you more information on benefits of choosing one method over another. The following few pages will give you more information on benefits of choosing one method over another.
== SVN Access == == GitHub Access ==
If you want to access the latest version of the module you need to get it from the svn repository. The list of changes made since the last stable release is normally available on the web site (and in the file CHANGES). The SVN repository for ModSecurity is hosted by SourceForge (http://www.sf.net). You can access it directly or view if through web using this address: http://mod-security.svn.sourceforge.net/viewvc/mod-security/ If you want to access the latest version of the module you need to get it from the git repository. The list of changes made since the last stable release is normally available on the web site (and in the file CHANGES). The git repository for ModSecurity is hosted by GitHub (http://www.github.com). You can access it directly or view if through web using this address: https://github.com/SpiderLabs/ModSecurity
To download the lastest TRUNK source code to your computer you need to execute the following command: To download the lastest TRUNK source code to your computer you need to execute the following command:
'''git''' '''git'''
<pre> <pre>
$git svn clone --prefix=svn/ https://mod-security.svn.sourceforge.net/svnroot/mod-security/m2/trunk $git clone git://github.com/SpiderLabs/ModSecurity.git
</pre> $git checkout remotes/trunk
'''svn'''
<pre>
svn co https://mod-security.svn.sourceforge.net/svnroot/mod-security/m2/trunk modsecurity
</pre> </pre>
For v2.6.0 and above, the installation process has changed. Follow these steps: For v2.6.0 and above, the installation process has changed. Follow these steps:
#cd into the directory - <code>$cd modsecurity</code> #cd into the directory - <code>$cd ModSecurity</code>
#Run autogen.sh script - <code>$./autogen.sh</code> #Run autogen.sh script - <code>$./autogen.sh</code>
#Run configure script - <code>$./configure</code> #Run configure script - <code>$./configure</code>
#Run make - <code>$make</code> #Run make - <code>$make</code>
@@ -4182,4 +4180,4 @@ While we will continue to enhance ModSecurity to deal with various evasion techn
#The order in which parameters are taken from the request and the environment is EGPCS (environment, GET, POST, Cookies, built-in variables). This means that a POST parameter will overwrite the parameters transported on the request line (in QUERY_STRING). #The order in which parameters are taken from the request and the environment is EGPCS (environment, GET, POST, Cookies, built-in variables). This means that a POST parameter will overwrite the parameters transported on the request line (in QUERY_STRING).
#When "magic_quotes_gpc" is set to "On" PHP will use backslash to escape the following characters: single quote, double quote, backslash, and the nul byte. #When "magic_quotes_gpc" is set to "On" PHP will use backslash to escape the following characters: single quote, double quote, backslash, and the nul byte.
#If "magic_quotes_sybase" is set to "On" only the single quote will be escaped using another single quote. In this case the "magic_quotes_gpc" setting becomes irrelevant. The "magic_quotes_sybase" setting completely overrides the "magic_quotes_gpc" behaviour but "magic_quotes_gpc" still must be set to "On" for the Sybase-specific quoting to be work. #If "magic_quotes_sybase" is set to "On" only the single quote will be escaped using another single quote. In this case the "magic_quotes_gpc" setting becomes irrelevant. The "magic_quotes_sybase" setting completely overrides the "magic_quotes_gpc" behaviour but "magic_quotes_gpc" still must be set to "On" for the Sybase-specific quoting to be work.
#PHP will also automatically create nested arrays for you. For example "p[x][y]=1" results in a total of three variables. #PHP will also automatically create nested arrays for you. For example "p[x][y]=1" results in a total of three variables.