nginx mod security module issue

Dhanushka Parakrama parakrama1282 at gmail.com
Wed Jan 20 12:55:35 UTC 2016 

Hi All

I have complied the* nginx 1.9.9* with ModSecurity  support  . and
configured the nginx,conf as fallows


*Nginx Version : 1.9.9*
*Modsecurity Version : 2.9*


#nginx -V

nginx version: nginx/1.9.9
built by gcc 4.8.4 (Ubuntu 4.8.4-2ubuntu1~14.04)
built with OpenSSL 1.0.1f 6 Jan 2014
TLS SNI support enabled
configure arguments: --user=www-data --group=www-data --with-pcre-jit
--with-debug --with-ipv6 --with-http_ssl_module
--add-module=/opt/modsecurity-2.9.0/nginx/modsecurity






*nginx.conf=========*user  www-data;
worker_processes  1;

error_log  /var/log/nginx/error.log;


events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;
     access_log /var/log/nginx/access.log;

    sendfile        on;
    keepalive_timeout  65;

     gzip  on;

    server {
        listen       80;
        server_name  example.org;
        location / {

           ModSecurityEnabled on;
           ModSecurityConfig modsecurity.conf;

            root   html;
            index  index.html index.htm;
        }



     location /sonar {

     ModSecurityEnabled on;
     ModSecurityConfig modsecurity.conf;
     proxy_set_header X-Forwarded-Host $host;
     proxy_set_header X-Forwarded-Server $host;
     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
     proxy_pass http://192.168.8.52:443/sonar;
    }

        error_page   500 502 503 504  /50x.html;
        location = /50x.html {
            root   html;
        }

    }



-> When i access  the *http://example.org <http://example.org>*  i can
access the web page and  modsecurity  lodged the access data to to Audit
log .

->  Then i access the * http://example.org/sonar <http://example.org/sonar>
  *i get the following error in my logfile


2016/01/20 18:17:28 [alert] 3520#0: worker process 3549 exited on signal 11
(core dumped)
2016/01/20 18:17:29 [alert] 3520#0: worker process 3551 exited on signal 11
(core dumped)
2016/01/20 18:17:29 [alert] 3520#0: worker process 3553 exited on signal 11
(core dumped)
2016/01/20 18:17:29 [alert] 3520#0: worker process 3555 exited on signal 11
(core dumped)


Can  you guys please how to over come this issue
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20160120/b2263302/attachment.html>

More information about the nginx mailing list