ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx
Build the image:
docker build -t modsec .
Run the Image:
docker run -ti --rm -p 80:80 modsec
This will start an Apache Webserver, on port 80, with ModSecurity installed.
You can access this webserver typically by navigating to http://localhost
Note: ModSecurity without any ruleset isn't very helpful. A common ruleset, the OWASP Core Rule Set (CRS), is available free on GitHub. CRS has it's own Dockerfile that builds on this image.
This image builds ModSecurity with the recommended configuration by default.
This configuration blocks very little. Please see the Recommended Configuration for more details
At this point, there are no configuration options for this image.
License: Apache 2.0 license, see LICENSE. Author: Chaim Sanders ( @csanders-git ) and contributors