====== Mod Security2 ======

===== Install modsecurity2 =====

<file>
apt-get install libapache2-mod-security2 lua50
sudo a2enmod security2
sudo a2enmod headers
</file>

===== Install CRS =====

<file>
wget -O /tmp/modsecurity-crs.tar.gz https://github.com/SpiderLabs/owasp-modsecurity-crs/tarball/master
cd /tmp
tar xvzf modsecurity-crs.tar.gz
mv SpiderLabs-* /usr/local/share/modsecurity-crs
cd /usr/local/share/modsecurity-crs
mv modsecurity_crs_10_setup.conf.example modsecurity_crs_10_setup.conf
</file>

===== Configure =====

<file>
cp /etc/modsecurity/modsecurity.conf-recommended /etc/modsecurity/modsecurity.conf
nano /etc/modsecurity/modsecurity.conf
</file>

At the bottom it should look something like the following:

<file>
SecStatusEngine On

Include /usr/local/share/modsecurity-crs/*.conf
Include /usr/local/share/modsecurity-crs/base_rules/*.conf
Include /usr/local/share/modsecurity-crs/optional_rules/*.conf
</file>