Apache module: mod_security

Hi,

I have written this Apache 1.x module that will most likely be of interest to you. In essence it is an intrusion detection and prevention software for Apache. It filters incoming requests based on various criteria and either denies access or simply logs violations.

The homepage of the module is:
http://www.webkreator.com/mod_security/

For those who know Apache well, have a look at configuration directive examples here:
http://www.webkreator.com/download/mod_security/example-httpd.conf

The module is stable and works quite nice in all my tests. I need input from people in order to gather requirements for future versions. Regression tests are scheduled for the next release, and so is a full list of attacks against which the module is effective.

As an additional bonus, the module can also perform full audit logging so it can very useful for compromise forensics.

Somewhere at the back of my mind I have plans for Java and IIS versions of the same thing (I have to get to learn more about the CodeSeeker project first, to make sure there is no duplicated effort).

--
Ivan Ristic, 
http://www.webkreator.com

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek