Older ModSecurity (2.9.5) with Ubuntu 22.04 LTS blocking updates to ModSecurity Core Rule Set.
Hello,
Newer versions of OWASP ModSecurity Core Rule Set require newer ModSecurity package (>2.9.6 or >3.0.8) or older with backported patches, but Ubuntu 22.04 LTS provides ModSecurity version 2.9.5 with last changes from October 2021... any plans to address this? Or should I just uninstall it and compile from sources?
More information:
Important Notice: From CRS 3.2.2, 3.3.3 and up, ModSecurity 2.9.6 or 3.0.8 (or versions with backported patches) are required due to the addition of new protections. We recommend upgrading your ModSecurity as soon as possible. If your ModSecurity is too old, your webserver will refuse to start with an Unknown variable: &MULTIPART_
Regards,
Martin
Question information
- Language:
- English Edit question
- Status:
- Solved
- Assignee:
- No assignee Edit question
- Solved by:
- Martin Hudec
- Solved:
- Last query:
- Last reply: