i acquired the delayed rules, then untared them into the modsecurity.d directory. they landed in their own directory "modsec". Should i leave them there or place them into the modsecurity.d directory?And then copy the ASL rules into /etc/httpd/modsecurity.d and finally make sure you have these defined in your modsecurity.conf file:
(If you already have these set, you can leave them alone, they just need to be set for 2.5, here are some examples we use:)
SecDataDir /var/asl/data/msa SecTmpDir /tmp SecAuditLogStorageDir /var/asl/data/audit
What does this mean? Do these phrases need to be in the config file?
where does this go
# General settings
# Application settings
# Apache settings
RESTART_APACHE=yes # This can be yes, no, or graceful
# Clamav settings
I'm new at this setup and seems like the instructions assume a deeper knowledge of the procedures. I would appreciate your help.