mod_security and PCI-DSS compliance with Breach Security's Enhanced Rule Set

view full story

http://www.linuxquestions.org – Ahoi, Currently I'm looking into implementing mod_security on all our apache servers. The installation on CentOS 5.5 comes directly with the "Core Rule Set" by the mod_security devs (curiously Debian and Ubuntu do not carry these) They also offer the Enhanced Rule Set for mod_security in a commercial package (info: http://www.breach.com/products/modsecurity.html ) The main point there in their info link is the first point Quote: (HowTos)