Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 718358 - www-apache/mod_security-3.0.7 version bump
Summary: www-apache/mod_security-3.0.7 version bump
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: No maintainer - Look at https://wiki.gentoo.org/wiki/Project:Proxy_Maintainers if you want to take care of it
URL:
Whiteboard:
Keywords: PullRequest
Depends on:
Blocks:
 
Reported: 2020-04-19 15:43 UTC by Jonas Stein
Modified: 2022-07-19 17:21 UTC (History)
4 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jonas Stein gentoo-dev 2020-04-19 15:43:23 UTC
please bump
https://github.com/SpiderLabs/ModSecurity/releases/

Reproducible: Always
Comment 1 Tobias Sager 2020-05-17 10:16:14 UTC
This is not simple to bump as the architecture was completely changed with the rewrite/release of modsecurity 3.x.

Package is now split in:
* libmodsecurity (https://github.com/SpiderLabs/ModSecurity), web server agnostic and better performing
* ModSecurity-Apache connector to interface between Apache and libmodsecurity (https://github.com/SpiderLabs/ModSecurity-apache)

Latest version of 2.x is v2.9.3 which is available in the Gentoo tree. There are a few upstream changes pending for v2.x: https://github.com/SpiderLabs/ModSecurity/blob/v2/master/CHANGES
Comment 2 Tomáš Mózes 2020-10-01 13:44:11 UTC
According to https://coreruleset.org/installation/ version 2.9.x is still recommended for Apache.
Comment 3 Larry the Git Cow gentoo-dev 2022-07-19 17:21:17 UTC
The bug has been closed via the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=10414bf03e312ad3f46e5639c270aaadf3eb181c

commit 10414bf03e312ad3f46e5639c270aaadf3eb181c
Author:     Tomáš Mózes <hydrapolic@gmail.com>
AuthorDate: 2022-07-14 12:38:43 +0000
Commit:     Conrad Kostecki <conikost@gentoo.org>
CommitDate: 2022-07-19 17:20:42 +0000

    dev-libs/modsecurity: new package
    
    Modsecurity is a library that can be used by Nginx:
    https://github.com/SpiderLabs/ModSecurity-nginx
    
    For Apache, Modsecurity 2.x is still recommended.
    
    Bug: https://bugs.gentoo.org/726614
    Closes: https://bugs.gentoo.org/718358
    Signed-off-by: Tomáš Mózes <hydrapolic@gmail.com>
    Signed-off-by: Conrad Kostecki <conikost@gentoo.org>

 dev-libs/modsecurity/Manifest                 |  1 +
 dev-libs/modsecurity/metadata.xml             | 35 ++++++++++++
 dev-libs/modsecurity/modsecurity-3.0.7.ebuild | 80 +++++++++++++++++++++++++++
 3 files changed, 116 insertions(+)