Author Topic: Status engine is currently disabled  (Read 8184 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
Status engine is currently disabled
« on: June 23, 2019, 02:06:47 PM »
how can i SecStatusEngine set On ?

--------IN MY LOG--------------->
[Sun Jun 23 09:57:01.096183 2019] [:notice] [pid 2971:tid 139990274434944] ModSecurity: Status engine is currently disabled, enable it by set SecStatusEngine to On.
-----------------------

MY CONFIG->

-----------Contents of File: /usr/local/apache/conf.d/mod_security.conf-----------
LoadFile /usr/lib64/libxml2.so
            LoadFile /usr/lib64/liblua-5.1.so
           
            <IfModule !unique_id_module>
              LoadModule unique_id_module modules/mod_unique_id.so
            </IfModule>
           
            <IfModule !mod_security2.c>
              LoadModule security2_module  modules/mod_security2.so
            </IfModule>
           
            <IfModule mod_security2.c>
              <IfModule mod_ruid2.c>
                SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit
                SecAuditLogType Concurrent
              </IfModule>
              <IfModule itk.c>
                SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit
                SecAuditLogType Concurrent
              </IfModule>
           
              SecRuleEngine On
              SecAuditEngine RelevantOnly
              SecAuditLog /usr/local/apache/logs/modsec_audit.log
              SecDebugLog /usr/local/apache/logs/modsec_debug.log
              SecAuditLogType Serial
              SecDebugLogLevel 0
              SecRequestBodyAccess On
              SecDataDir /tmp
              SecTmpDir /tmp
              SecUploadDir /tmp
              SecCollectionTimeout 600
              SecPcreMatchLimit 1250000
              SecPcreMatchLimitRecursion 1250000
              Include "/usr/local/apache/modsecurity-cwaf/cwaf.conf"
         
            </IfModule>

Offline
**
Re: Status engine is currently disabled
« Reply #1 on: June 23, 2019, 08:15:17 PM »
Edit /usr/local/apache/conf.d/mod_security.conf


Add SecStatusEngine On below SecRuleEngine On and make sure they are on the same line

After restart apache

Offline
*
Re: Status engine is currently disabled
« Reply #2 on: May 08, 2020, 06:35:34 PM »
what is the benifit of turning on status engine for modsecurity?