modseccfg is a simple GUI to tame mod_security rules. It scans logs for possible false positives, and simplifies disabling rules.
It works locally or per sshfs-remoting on server config files. Provides a configuration editor, some rule recipes, and basic log listing.
Homepage
Download
Recent Releases
0.7.024 Dec 2020 03:15
major feature:
Introduces modify dialog to create SecRuleUpdateActionById and SecRuleUpdateTargetById
directives for existing rules, taking into account existing overrides.
Bundles logfmt1 / update-logfmt and logex command line tool to allow for
general log processing with varying formatstrings.
catastrophic backtracking for help() text on some rules.
Add file:// links for @pmFromFile patterns.
dependencies in pluginconf.setup() from comment continuation lines.
Enabled Wrap button as submenu.
Allow user-recipes as.txt files, and indent whole block for additions.
Support TransferLog (which nobody uses). Add pretty progressbar
for modseccfg startup.
0.6.010 Dec 2020 03:15
major feature:
Introduces log preprocess and report or image scripts/.
Add File Install menu for modssec-flameeyes.deb packages
or setup scripts.
Implement *.preconf support in writer/config/recipes.
Rewritten recipe handler and menu structure.
Introduce module/plugin lookup for.add_menu()/.has()/.show() and raw_event
in mainwindow handler (for literal menu string lookups).
Minor, published data tests.
0.5.002 Dec 2020 03:15
major feature:
Various (recipe, writer, _update_rules, audit log detection).
Introduce colorized log view and filtering/search.
Prepare for *.preconf files, give special recognition to
CRS exclusion files, and avoid matching IfModule as wrapper.
Add Log Advise lookup for common errors. Menu restructuring.
0.4.026 Nov 2020 03:15
major feature:
0.2.019 Nov 2020 03:15
major bugfix:
Added an info dialog for rule inspection.
Implemented enable to undo SecRemoveRemoveRuleById directives.
Keyboard bindings in main window, hourglass mouse pointer for
updates, and uses appdirs now instead of a CONFIG_HOME path.
Multiple dialogs (main, editor, window) can now run in parallel.
Config dictionary has been merged into appsettings.
0.1.015 Nov 2020 12:55
minor feature:
Provides for sshfs-remoting with `modseccfg vps5:/` parameter.
Added a basic editor for conf files.
Fix insertion regex, backup option, and use proper SecRuleRemove directive.
New options to automatically switch log file for vhost.