fluent-plugin-modsecurity 0.1.2 → 0.1.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/Gemfile +0 -2
- data/README.md +34 -2
- data/fluent-plugin-modsecurity.gemspec +2 -2
- metadata +3 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 54c78fcc41169d6cb9189210dd5304d84a45dd36
|
|
4
|
+
data.tar.gz: ebacaf53ca4cd96ee4064dfee262729d6d47233f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: d069473fe0277b3345e8ee219e649223ac635da461fc0443df3fc9fb89f570db0fb52963632603568aa26093d7d12cd037ad40a0f79262f2e8df960af94ff022
|
|
7
|
+
data.tar.gz: 29c864457df5521baa67894c64829c033b21de826227ae8d38752347098b297c30401544e061125dc7a8cee0f39b73f2440daa8f3b89dcc66febc73ad4980f3a
|
data/Gemfile
CHANGED
data/README.md
CHANGED
|
@@ -1,10 +1,42 @@
|
|
|
1
1
|
# fluent-plugin-modsecurity
|
|
2
|
-
fluentd plugin for modsecurity log
|
|
2
|
+
fluentd plugin for modsecurity log. Enable modsecurity audit log 2 to export nginx access log like block log. Detail log path included in audit log2. Read and combine the detail log record by this plugin.
|
|
3
3
|
|
|
4
4
|
[](https://travis-ci.org/kaija/fluent-plugin-modsecurity)
|
|
5
5
|
|
|
6
6
|
|
|
7
|
-
|
|
7
|
+
## Build / Install
|
|
8
|
+
|
|
9
|
+
|
|
10
|
+
```
|
|
11
|
+
#self build and install
|
|
12
|
+
gem build fluent-plugin-modsecurity.gemspec
|
|
13
|
+
sudo td-agent-gem install fluent-plugin-modsecurity-0.1.2.gem
|
|
14
|
+
|
|
15
|
+
or
|
|
16
|
+
|
|
17
|
+
#install from public rubygems
|
|
18
|
+
sudo td-agent-gem install fluent-plugin-modsecurity
|
|
19
|
+
|
|
20
|
+
```
|
|
21
|
+
|
|
22
|
+
|
|
23
|
+
## modsecurity setting
|
|
24
|
+
|
|
25
|
+
```
|
|
26
|
+
#setup modsecurity audit log 2
|
|
27
|
+
SecAuditLog2 /var/log/modsec/audit.log
|
|
28
|
+
|
|
29
|
+
#set detail audit log storage dir
|
|
30
|
+
SecAuditLogStorageDir /var/log/modsec
|
|
31
|
+
|
|
32
|
+
#change log file and dir permision for td-agent
|
|
33
|
+
SecAuditLogFileMode 0644
|
|
34
|
+
SecAuditLogDirMode 0755
|
|
35
|
+
|
|
36
|
+
```
|
|
37
|
+
|
|
38
|
+
|
|
39
|
+
## td-agent config
|
|
8
40
|
|
|
9
41
|
|
|
10
42
|
```
|
|
@@ -3,10 +3,10 @@ $:.push File.expand_path('../lib', __FILE__)
|
|
|
3
3
|
|
|
4
4
|
Gem::Specification.new do |s|
|
|
5
5
|
s.name = 'fluent-plugin-modsecurity'
|
|
6
|
-
s.version = '0.1.
|
|
6
|
+
s.version = '0.1.3'
|
|
7
7
|
s.authors = ['kaija']
|
|
8
8
|
s.email = ['kaija.chang@gmail.com']
|
|
9
|
-
s.description = %q{modsecurity filter plugin for Fluent detail log}
|
|
9
|
+
s.description = %q{modsecurity filter plugin for Fluent detail log. more detail please see https://github.com/kaija/fluent-plugin-modsecurity}
|
|
10
10
|
s.summary = %q{modsecurity filter plugin}
|
|
11
11
|
s.homepage = 'https://github.com/kaija/fluent-plugin-modsecurity'
|
|
12
12
|
s.license = 'MIT'
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: fluent-plugin-modsecurity
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.1.
|
|
4
|
+
version: 0.1.3
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- kaija
|
|
@@ -66,7 +66,8 @@ dependencies:
|
|
|
66
66
|
- - "~>"
|
|
67
67
|
- !ruby/object:Gem::Version
|
|
68
68
|
version: '5.8'
|
|
69
|
-
description: modsecurity filter plugin for Fluent detail log
|
|
69
|
+
description: modsecurity filter plugin for Fluent detail log. more detail please see
|
|
70
|
+
https://github.com/kaija/fluent-plugin-modsecurity
|
|
70
71
|
email:
|
|
71
72
|
- kaija.chang@gmail.com
|
|
72
73
|
executables: []
|