Is anyone maintaining a “current” version of nginx with mod-security
linked-in?
I realize this is a bit lazy on my part – the instructions seem
relatively straightforward to build – but I didn’t want to “re-invent
the wheel” if I didn’t have to.
I do a custom-build for our own servers (in private pkg-ng repository)
with a handful of useful modules included. Because the truth is: only
you know what modules you want or need.
This is absolutely true. (And I’m running CentOS and have been very
happy as well.)
Is anyone maintaining a “current” version of nginx with mod-security linked-in?
I realize this is a bit lazy on my part – the instructions seem relatively
straightforward to build – but I didn’t want to “re-invent the wheel” if I didn’t
have to.
The FreeBSD port recently gained support for mod_security.
You can even build the dev-version:
FreeBSD + nginx works super-smooth.
I do a custom-build for our own servers (in private pkg-ng repository)
with a handful of useful modules included.
Because the truth is: only you know what modules you want or need.
A request comes to an ip:port. nginx chooses the set of best-match
servers
for that ip:port. A request indicates which Host: it cares about. nginx
chooses the one matching server from that set of servers.
Which means (approximately): if you want all possible server{} blocks to
be available to match a request, they should all have the same “listen”
directives.
So, or I am do something wrong or wiki-page doesn’t clear describe this
situation?
That wiki page section doesn’t any “listen” directives. I imagine the
author thought that that aspect was out of scope for that document.