%define mod_name mod_security Name: apache-%{mod_name} Version: 2.7.3 Release: %mkrel 1 Summary: Open Source Web Application Firewall Group: System/Servers License: Apache License URL: http://www.modsecurity.org/ Source0: https://github.com/downloads/SpiderLabs/ModSecurity/modsecurity-apache_%{version}.tar.gz Source2: mod_security.logrotate Source3: mod_security.conf Requires: apache >= 2.4.0 Requires: mlogc >= 1.4.2 Requires: unzip Suggests: apache-mod_security-crs BuildRequires: apache-devel >= 2.4.0 BuildRequires: curl-devel BuildRequires: libxml2-devel BuildRequires: lua5.2-devel >= 5.2 BuildRequires: pcre-devel Epoch: 1 %description ModSecurity is an open source intrustion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding applications from attacks. %package -n mlogc Summary: ModSecurity Audit Log Collector Group: System/Servers %description -n mlogc ModSecurity is an open source intrustion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding applications from attacks. This package contains the ModSecurity Audit Log Collector. %prep %setup -q -n modsecurity-apache_%{version} %build %serverbuild %configure2_5x --localstatedir=/var/lib \ --enable-performance-measurement \ --enable-extentions \ --with-apxs=%{_httpd_apxs} \ --with-pcre=%{_prefix} \ --with-apr=%{_prefix} \ --with-apu=%{_prefix} \ --with-libxml=%{_prefix} \ --with-lua=%{_prefix} \ --with-curl=%{_prefix} %make %make -C mlogc %install install -d %{buildroot}%{_sbindir} install -d %{buildroot}%{_bindir} install -d %{buildroot}%{_httpd_moddir} install -m 755 apache2/.libs/mod_security2.so \ %{buildroot}%{_httpd_moddir}/mod_security2.so install -d %{buildroot}%{_httpd_modconfdir} cat > %{buildroot}%{_httpd_modconfdir}/10_mod_security.conf <<EOF LoadModule security2_module modules/mod_security2.so EOF install -d %{buildroot}%{_httpd_extconfdir} install -m 644 %{SOURCE3} %{buildroot}%{_httpd_extconfdir}/mod_security.conf install -d %{buildroot}%{_httpd_confdir}/modsecurity.d cat > %{buildroot}%{_httpd_confdir}/modsecurity.d/localrules.conf <<EOF # Drop your local rules in here. EOF install -d %{buildroot}%{_sysconfdir}/logrotate.d install -m 644 %{SOURCE2} %{buildroot}%{_sysconfdir}/logrotate.d/mod_security install -m 755 mlogc/mlogc %{buildroot}%{_bindir} install -m 755 mlogc/mlogc-batch-load.pl %{buildroot}%{_bindir}/mlogc-batch-load install -m 644 mlogc/mlogc-default.conf %{buildroot}%{_httpd_confdir}/mlogc.conf install -d %{buildroot}%{_localstatedir}/lib/%{name} %files %doc CHANGES LICENSE README* %config(noreplace) %{_httpd_modconfdir}/10_mod_security.conf %config(noreplace) %{_httpd_extconfdir}/mod_security.conf %dir %{_httpd_confdir}/modsecurity.d %config(noreplace) %{_httpd_confdir}/modsecurity.d/localrules.conf %config(noreplace) %{_sysconfdir}/logrotate.d/mod_security %{_httpd_moddir}/mod_security2.so %attr(770,apache,root) %dir %{_localstatedir}/lib/%{name} %files -n mlogc %doc mlogc/INSTALL %attr(0640,root,apache) %config(noreplace) %{_httpd_confdir}/mlogc.conf %{_bindir}/mlogc %{_bindir}/mlogc-batch-load %changelog * Sat Apr 13 2013 guillomovitch <guillomovitch> 1:2.7.3-1.mga3 + Revision: 409864 - new version * Tue Jan 29 2013 oden <oden> 1:2.7.2-1.mga3 + Revision: 393144 - 2.7.2 - fix deps * Fri Jan 11 2013 umeabot <umeabot> 1:2.7.1-2.mga3 + Revision: 345863 - Mass Rebuild - https://wiki.mageia.org/en/Feature:Mageia3MassRebuild * Sun Dec 23 2012 oden <oden> 1:2.7.1-1.mga3 + Revision: 334252 - fix file lists - 2.7.1 - sync slightly with fedora * Sat Dec 01 2012 fwang <fwang> 1:2.6.7-2.mga3 + Revision: 323762 - rebuild for new pcre * Sat Aug 25 2012 guillomovitch <guillomovitch> 1:2.6.7-1.mga3 + Revision: 283918 - new version 2.6.7 - adapt to new apache setup - move crs rules to external apache-mod_security-crs package - drop useless sendmail-command dependency * Sat Jul 07 2012 luigiwalser <luigiwalser> 1:2.6.6-2.mga3 + Revision: 268649 - require perl-GnuPG for rules-updater.pl (mga #6678) * Thu Jul 05 2012 guillomovitch <guillomovitch> 1:2.6.6-1.mga3 + Revision: 267946 - drop old update procedure from previous package name - no need to regenerate build system - force usage of lua5.1 + luigiwalser <luigiwalser> - remove patch applied upstream - 2.6.6 - add patch from debian to fix CVE-2012-2751 * Mon Mar 19 2012 luigiwalser <luigiwalser> 1:2.6.3-3.mga2 + Revision: 223838 - httpd restart is handled by filetriggers now * Fri Mar 16 2012 guillomovitch <guillomovitch> 1:2.6.3-2.mga2 + Revision: 223632 - better summary - drop conditional module loading - no need for rpm-helper, nor for apache, during pre or post installation - spec cleanup * Sun Mar 04 2012 luigiwalser <luigiwalser> 1:2.6.3-1.mga2 + Revision: 218064 - 2.6.3 * Thu Oct 13 2011 dlucio <dlucio> 1:2.6.2-2.mga2 + Revision: 154187 - fix requires * Wed Oct 12 2011 dlucio <dlucio> 1:2.6.2-1.mga2 + Revision: 154176 - imported package apache-mod_security