ea-apache24-mod_security2-2:2.9.2-3646.el6.art$>>hj`>u2kn>>40?4 d"0 4 _04LP Xs`|      Cf $ $ $   !( "8 (J9PJ:J>0@0G0H0I0X0Y0\1]10^1b1d2we2|f2l2t2u2v2w3x3y34Cea-apache24-mod_security22.9.23646.el6.artSecurity module for the Apache HTTP ServerModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding web applications from attacks.ZGflatback.atomicorp.com5ASL 2.0System Environment/Daemonshttp://www.modsecurity.org/linuxx86_64# Upgrade the ea4 old config locations to the EA4 new config locations # No need to concern ourselves with EA3 here, because it writes to the new EA4 location [[ -e /etc/apache2/conf.d/modsec2.user.conf ]] && /bin/mv /etc/apache2/conf.d/modsec2.user.conf /etc/apache2/conf.d/modsec/modsec2.user.conf || /bin/true [[ -e /etc/apache2/conf.d/modsec2.user.conf.PREVIOUS ]] && /bin/mv /etc/apache2/conf.d/modsec2.user.conf.PREVIOUS /etc/apache2/conf.d/modsec/modsec2.user.conf.PREVIOUS || /bin/true [[ -e /etc/apache2/conf.d/modsec2.cpanel.conf ]] && /bin/mv /etc/apache2/conf.d/modsec2.cpanel.conf /etc/apache2/conf.d/modsec/modsec2.cpanel.conf || /bin/true [[ -e /etc/apache2/conf.d/modsec2.cpanel.conf.PREVIOUS ]] && /bin/mv /etc/apache2/conf.d/modsec2.cpanel.conf.PREVIOUS /etc/apache2/conf.d/modsec/modsec2.cpanel.conf.PREVIOUS || /bin/true # Tell tailwatchd to start monitoring modsec_audit.log [[ -x /usr/local/cpanel/scripts/restartsrv_tailwatchd ]] && /usr/local/cpanel/scripts/restartsrv_tailwatchd &>/dev/null || /bin/true# Tell tailwatchd to stop monitoring modsec_audit.log [[ -x /usr/local/cpanel/scripts/restartsrv_tailwatchd ]] && /usr/local/cpanel/scripts/restartsrv_tailwatchd &>/dev/null || /bin/true(ӎx'*CہA큤ZGZGZGYnWeYnWeYnWeYnWe589f1626495f9f068bae99bff48ee2bbce3888ed9f6d6fff7e447843a1999cd6114c63b8b9022cfdcc6aeb063877f3bb73318e472db1a7a8061f4b3d4a952f922c564f5a67e49e74c80e5a7dcacd1904e7408f1fd6a95218b38c04f012d94cb97c5ab21c71d6f8ace2eed03222eed7035a77dc3cf84d56f307caa9d879ec475ef036ca882655c85ccd64e73302be5cea6f7684fc1dfb398f86d4a06c14bf9d40rootrootrootrootrootrootrootrootrootrootrootrootrootrootea-apache24-mod_security2-2.9.2-3646.el6.art.src.rpmmod_security2.so()(64bit)ea-apache24-mod_security2ea-apache24-mod_security2(x86-64)@@@@@@@@@@@@@@@@@@@@@@@    @ /bin/sh/bin/shatomic-curl-libcurlea-apache24ea-apache24-configea-apache24-mod_unique_idlibapr-1.so.0()(64bit)libaprutil-1.so.0()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libcurl.so.4()(64bit)libdb-4.7.so()(64bit)libdl.so.2()(64bit)libexpat.so.1()(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)liblua-5.1.so()(64bit)libm.so.6()(64bit)libpcre.so.0()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)libxml2libxml2.so.2()(64bit)libxml2.so.2(LIBXML2_2.4.30)(64bit)libxml2.so.2(LIBXML2_2.5.8)(64bit)libxml2.so.2(LIBXML2_2.6.0)(64bit)libxml2.so.2(LIBXML2_2.6.11)(64bit)libyajl.so.2()(64bit)libz.so.1()(64bit)luarpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)rpmlib(PayloadIsXz)5.13.0.4-14.6.0-14.0-15.2-1mod_security4.8.0X$a@WQWrfWgWL+@V8V8UpUc@U@U(Ug@UPU @S=M@RURkQ@QVQsPP@P@P@P@P@P~Pe@PPy@P8@P8@P H@O^@O O@O@O}@O5OM@L+1KtKv@JJ@JjI@I2IXHL@HG GGr@F&@F@F_Fw@FFE@DDhm@D;@DC@C-C@CCqBϼ@Bϼ@BBSupport - 2.9.1-1S. Kurt Newman - 2.9.0-11Edwin Buck - 2.9.0-10Dan Muey - 2.9.0-9S. Kurt Newman - 2.9.0-6Julian Brown - 2.9.0-5Julian Brown - 2.9.0-4S. Kurt Newman - 2.9.0-3Trinity Quirk - 2.9.0-2Trinity Quirk - 2.9.0-1Trinity Quirk - 2.9.0-0Darren Mobley - 2.8.0-2Darren Mobley - 2.8.0-1S. Kurt Newman - 2.8.0-0Daniel Kopecek - 2.7.3-5Daniel Mach - 2.7.3-4Daniel Mach - 2.7.3-3Athmane Madjoudj 2.7.3-2Athmane Madjoudj 2.7.3-1Athmane Madjoudj 2.7.2-1Athmane Madjoudj 2.7.1-5Peter Vrabec 2.7.1-4Athmane Madjoudj 2.7.1-3Athmane Madjoudj 2.7.1-2Athmane Madjoudj 2.7.1-1Athmane Madjoudj 2.7.0-2Athmane Madjoudj 2.7.0-1Athmane Madjoudj 2.6.8-1Athmane Madjoudj 2.6.7-2Athmane Madjoudj 2.6.7-1Athmane Madjoudj 2.6.7-1Fedora Release Engineering - 2.6.6-3Peter Vrabec - 2.6.6-2Peter Vrabec - 2.6.6-1Joe Orton - 2.6.5-3Peter Vrabec 2.6.5-2Peter Vrabec 2.6.5-1Petr Pisar - 2.5.13-3Fedora Release Engineering - 2.5.13-2Michael Fleming - 2.5.13-1Michael Fleming - 2.5.12-3Michael Fleming - 2.5.12-2Michael Fleming - 2.5.12-1Michael Fleming - 2.5.10-2Michael Fleming - 2.5.10-1Fedora Release Engineering - 2.5.9-2Michael Fleming 2.5.9-1Fedora Release Engineering - 2.5.7-2Michael Fleming 2.5.7-1Michael Fleming 2.5.6-1Michael Fleming 2.1.7-1Michael Fleming 2.1.6-1Fedora Release Engineering - 2.1.5-3Michael Fleming 2.1.5-2Michael Fleming 2.1.3-1Joe Orton 2.1.1-3Fedora Release Engineering - 2.1.1-2Michael Fleming 2.1.1-1Michael Fleming 2.1.0-3Michael Fleming 2.1.0-2Michael Fleming 2.1.0-1Michael Fleming 1.9.4-2Michael Fleming 1.9.4-1Michael Fleming 1.9.3-1Michael Fleming 1.9.2-3Michael Fleming 1.9.2-2Michael Fleming 1.9.2-1Michael Fleming 1.9.1-2Michael Fleming 1.9.1-1Michael Fleming 1.9-1Michael Fleming 1.8.7-4Michael Fleming 1.8.7-3Michael Fleming 1.8.7-2Michael Fleming 1.8.7-1- Re-Merge with main mod_security package- Fix permissions on modsec_audit directory (EA-5068)- EA-4687: Relocate modsec2.cpanel.conf and modsec2.user.conf- EA-4383: Update Release value to OBS-proof versioning- Added explicit lua and xml2 Requires statements (EA-4433) - Remove mpm_itk and mod_ruid2 conflicts (EA-4433) - Added more comments to explain portions of spec file (EA-4433) - Arrest control of modsec2.conf so we can ensure proper Apache logging type (EA-4433) - Arrest control of conf.modules.d/800-mod_security2.conf (EA-4433) - RPM now creates logs/modsec_audit dir for concurrent logging (EA-4433) - Added comments to configuration files to help guide administrator (EA-4433) - Use module name, not file name in configuration file (EA-4654)- Undo previous change.- Hard code a conflict in place to make EA4 UI able to detect issues with MPM.- Restart tailwatchd to re-read monitoring need of modsec_audit.log (CPANEL-1098)- Added references to the moved apr and apu- Added conflicts with mod_ruid2 and mod_mpm_itk- Updated to 2.9.0- Changed name from ea-apache2 to ea-apache24- Changed name of ea-httpd rpm dependancy to ea-apache2-config - Fixed previous changelog entry claiming version was updated to 2.9.0- Upgraded to 2.8.0- Fix Chunked string case sensitive issue (CVE-2013-5705) Resolves: rhbz#1082907- Mass rebuild 2014-01-24- Mass rebuild 2013-12-27- Fix NULL pointer dereference (DoS, crash) (CVE-2013-2765) (RHBZ #967615) - Fix a possible memory leak.- Update to 2.7.3- Update to 2.7.2 - Update source url in the spec.- Use conditional for loading mod_unique_id (rhbz #879264) - Fix syntax errors on httpd 2.4.x by using IncludeOptional (rhbz #879264, comment #2)- mlogc subpackage is not provided on RHEL7- Add some missing directives RHBZ #569360 - Fix multipart/invalid part ruleset bypass issue (CVE-2012-4528) (RHBZ #867424, #867773, #867774)- Fix mod_security.conf- Update to 2.7.1 - Remove libxml2 build patch (upstreamed) - Update spec since upstream moved to github- Add a patch to fix failed build against libxml2 >= 2.9.0- Update to 2.7.0- Update to 2.6.8- Re-add mlogc sub-package for epel (#856525)- Update to 2.6.7- Update to 2.6.7- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- mlogc subpackage is not provided on RHEL- upgrade- packaging fixes- fix license tag- upgrade & move rules into new package mod_security_crs- Rebuild against PCRE 8.30 - Do not install non-existing files- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Newer upstream version- Fix log dirs and files ordering per bz#569360- Fix SecDatadir and minimal config per bz #569360- Update to latest upstream release - SECURITY: Fix potential rules bypass and denial of service (bz#563576)- Fix rules and Apache configuration (bz#533124)- Upgrade to 2.5.10 (with Core Rules v2)- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Update to upstream release 2.5.9 - Fixes potential DoS' in multipart request and PDF XSS handling- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- Update to upstream 2.5.7 - Reinstate mlogc- Update to upstream 2.5.6 - Remove references to mlogc, it no longer ships in the main tarball. - Link correctly vs. libxml2 and lua (bz# 445839) - Remove bogus LoadFile directives as they're no longer needed.- Update to upstream 2.1.7- Update to upstream 2.1.6 (Extra features including SecUploadFileMode)- Autorebuild for GCC 4.3- Update to 2.1.5 (bz#425986) - "blocking" -> "optional_rules" per tarball ;-)- Update to 2.1.3 - Update License tag per guidelines.- rebuild for fixed 32-bit APR (#254241)- Rebuild for selinux ppc32 issue.- New upstream release - Drop ASCIIZ rule (fixed upstream) - Re-enable protocol violation/anomalies rules now that REQUEST_FILENAME is fixed upstream.- Automagically configure correct library path for libxml2 library. - Add LoadModule for mod_unique_id as the logging wants this at runtime- Fix DSO permissions (bz#233733)- New major release - 2.1.0 - Fix CVE-2007-1359 with a local rule courtesy of Ivan Ristic - Addition of core ruleset - (Build)Requires libxml2 and pcre added.- Rebuild - Fix minor longstanding braino in included sample configuration (bz #203972)- New upstream release- New upstream release - Trivial spec tweaks- Bump for FC5- Bump for newer gcc/glibc- New upstream release- Bump for new httpd- New release 1.9.1- New stable upstream release 1.9- Add Requires: httpd-mmn to get the appropriate "module magic" version (thanks Ville Skytta) - Disabled an overly-agressive rule or two..- Correct Buildroot - Some sensible and safe rules for common apps in mod_security.conf- Don't strip the module (so we can get a useful debuginfo package)- Initial spin for Extras/bin/sh/bin/sh2:2.9.2-3646.el6.art2:2.9.2-3646.el6.artmodsec_auditmod_security2.soea-apache24-mod_security2-2.9.2CHANGESLICENSENOTICEREADME.TXT/etc/apache2/logs//usr/lib64/apache2/modules//usr/share/doc//usr/share/doc/ea-apache24-mod_security2-2.9.2/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnuASCII textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, not strippedUTF-8 Unicode textUTF-8 Unicode text, with very long linesdirectoryPRRRR R R R R RRRRRRRRRRRRRRRR"? 7zXZ !#,]"k%~h Ś6$,bQPӞy ZW~0 IV}ŞLi|;H;*f#?w%|$BB? PX-|IX) /B(1s7ut5:ƨ2lӬfo VWJx6鷆ʠ)ta?#ڻmbNN!*STE~Ws/ji(ud*ͦE= ($S(yWt`Ŝd;קpջ^UQ[Y_89f޺:<^R ۽Lm̮d%oR<+nhkɂ)[ne"rLQ:$m! =sPEJLKuXÆJbĖ@4r]⊝nݿLtm7 "1dȅK|Fmяe 0'E Lk (JwwA uk /܌~C&QtwI"ܭI!W=כ~)߇RN:ẉLYSLU֟J0~L&2Ǎ}͆Cp ?fЫ8oo&}(uwwt*Y1QUSM+n=rgڢ(G󺳥/|eLǛ9Xw?F0͙ k@D3ElA)/fO UYПOT }7!p.cywBí;H8/l:M>6C>-ZT:fWdXx|vfP 4)#WTގ{i35?>X=>8mHEo-b5;>Oc)N%A4KϔXkBDOu-E|OnL&vtOL ɘM:b@R:7JdS7&ɰf\mx|^uK_ҲvLupK0X?Z)l>a::5*.߻j{$%R#͉g4'J{;\~,9ҵ%/Y-y\nKTpiVE*I[{vŒ< ,fEcQIeFNWkHUU\?H&aAl j4dᔉK~ѝ (}޸{F"Sg8|hUx>%f}&zut1pp)ןLLCw !( YZ