Bug#1012495: marked as done (RFP: libnginx-mod-http-modsecurity - ModSecurity v3 Nginx Connector)

["Debian Bug Tracking System" <owner@bugs.debian.org>]

Your message dated Sun, 22 Jan 2023 09:09:08 +0000
with message-id <E1pJWLc-00ElO3-0n@fasolo.debian.org>
and subject line Bug#1012495: fixed in libnginx-mod-http-modsecurity 1.0.3-1
has caused the Debian Bug report #1012495,
regarding RFP: libnginx-mod-http-modsecurity - ModSecurity v3 Nginx Connector
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
1012495: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1012495
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: submit@bugs.debian.org
• Subject: RFP: libnginx-mod-http-modsecurity - ModSecurity v3 Nginx Connector
• From: Patrick Schleizer <adrelanos@whonix.org>
• Date: Wed, 8 Jun 2022 11:29:58 +0000
• Message-id: <69c3649d-2a42-894f-2be6-22ef88c8192f@whonix.org>

Package: wnpp
Severity: wishlist
X-Debbugs-CC: pkg-nginx-maintainers@alioth-lists.debian.net

* Package name    : libnginx-mod-http-modsecurity
  Version         : v3.0.7
  Upstream Author : Trustwave's SpiderLabs
* URL             : https://github.com/SpiderLabs/ModSecurity-nginx
* License         : Apache 2.0
  Programming Lang: C
  Description     : ModSecurity v3 Nginx Connector

long description:

The ModSecurity-nginx connector is the connection point between nginx
and libmodsecurity (ModSecurity v3). Said another way, this project
provides a communication channel between nginx and libmodsecurity. This
connector is required to use LibModSecurity with nginx.

The ModSecurity-nginx connector takes the form of an nginx module. The
module simply serves as a layer of communication between nginx and
ModSecurity.

Notice that this project depends on libmodsecurity rather than
ModSecurity (version 2.9 or less).

license file:

https://github.com/SpiderLabs/ModSecurity-nginx/blob/master/LICENSE

additional information:

Hopefully adding this package to packages.debian.org would be
comparatively easy. It's already as a custom deb package from a custom
deb repository and stable for years. [1]

The maintainer of the custom libnginx-mod-http-modsecurity deb package
is Ervin Hegedüs. He is a CRS developer [2], Debian Maintainer [3] and
ModSecurity [4] code contributor.

Ervin, already a Debian Maintainer, would like to add the package to
Debian too. [5]

[1] https://modsecurity.digitalwave.hu/
[2]
https://github.com/coreruleset/coreruleset/blob/v3.4/dev/CONTRIBUTORS.md#developers
[3] https://nm.debian.org/person/airween/
[4]
https://github.com/SpiderLabs/ModSecurity/pulls?q=is%3Apr+is%3Aclosed+author%3Aairween
[5] https://github.com/SpiderLabs/ModSecurity-nginx/issues/282

--- End Message ---

--- Begin Message ---

• To: 1012495-close@bugs.debian.org
• Subject: Bug#1012495: fixed in libnginx-mod-http-modsecurity 1.0.3-1
• From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
• Date: Sun, 22 Jan 2023 09:09:08 +0000
• Message-id: <E1pJWLc-00ElO3-0n@fasolo.debian.org>
• Reply-to: Ervin Hegedus <airween@gmail.com>

Source: libnginx-mod-http-modsecurity
Source-Version: 1.0.3-1
Done: Ervin Hegedus <airween@gmail.com>

We believe that the bug you reported is fixed in the latest version of
libnginx-mod-http-modsecurity, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1012495@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Ervin Hegedus <airween@gmail.com> (supplier of updated libnginx-mod-http-modsecurity package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 19 Sep 2022 18:14:29 +0200
Source: libnginx-mod-http-modsecurity
Binary: libnginx-mod-http-modsecurity libnginx-mod-http-modsecurity-dbgsym
Architecture: source amd64
Version: 1.0.3-1
Distribution: unstable
Urgency: medium
Maintainer: Ervin Hegedus <airween@gmail.com>
Changed-By: Ervin Hegedus <airween@gmail.com>
Description:
 libnginx-mod-http-modsecurity - WAF module for Nginx
Closes: 1012495
Changes:
 libnginx-mod-http-modsecurity (1.0.3-1) unstable; urgency=medium
 .
   * Initial release. (Closes: #1012495)
Checksums-Sha1:
 eee35aeedb428bff8e47514b66e1d1ae0fdfcd7c 2255 libnginx-mod-http-modsecurity_1.0.3-1.dsc
 3c90619c6cae40d57d8f376bd5d8de2aa9a9330e 34059 libnginx-mod-http-modsecurity_1.0.3.orig.tar.gz
 6dfb5ec357088ddd3d85385f39aef0de3d295397 11512 libnginx-mod-http-modsecurity_1.0.3-1.debian.tar.xz
 d2d831e5c751a61a622066162aa99c54a340018e 45052 libnginx-mod-http-modsecurity-dbgsym_1.0.3-1_amd64.deb
 474015ec8df53b8b5ac7afaccba396d10dc9c218 10552 libnginx-mod-http-modsecurity_1.0.3-1_amd64.buildinfo
 3558ea875dc6336676215befbfa69be474a551b9 25532 libnginx-mod-http-modsecurity_1.0.3-1_amd64.deb
Checksums-Sha256:
 f2e00e4a717c7e88dba877f69246f5f38e5538c592779c18ef66015c88345761 2255 libnginx-mod-http-modsecurity_1.0.3-1.dsc
 284581e3940898900181920814817d61354fe639b140428cb3e5bafcae2248b5 34059 libnginx-mod-http-modsecurity_1.0.3.orig.tar.gz
 90d8d9fd2ce62e41efb56cb9d11414f579dedfe80c973d44d56084764852c914 11512 libnginx-mod-http-modsecurity_1.0.3-1.debian.tar.xz
 5a533d6c02a48661fc3629c4a9aa5ebeb066f60762cbc485d98f007af6398509 45052 libnginx-mod-http-modsecurity-dbgsym_1.0.3-1_amd64.deb
 e02feb6cd59291817d591a0abc0ae02f240546239a410f5a59050a83744b6b1b 10552 libnginx-mod-http-modsecurity_1.0.3-1_amd64.buildinfo
 25e5b384d09d13ea0e24d5a8ba37b0ccdfa4dbc00558febe4e2f889187f5352c 25532 libnginx-mod-http-modsecurity_1.0.3-1_amd64.deb
Files:
 74e87bc6dc086f65fb125260c641368b 2255 httpd optional libnginx-mod-http-modsecurity_1.0.3-1.dsc
 40765d1cceb45600b66eec43e6241b7e 34059 httpd optional libnginx-mod-http-modsecurity_1.0.3.orig.tar.gz
 1dc58814137a95e1517a955ecd403ea7 11512 httpd optional libnginx-mod-http-modsecurity_1.0.3-1.debian.tar.xz
 feaf3a8cb9c129b3cec585da5deeef4d 45052 debug optional libnginx-mod-http-modsecurity-dbgsym_1.0.3-1_amd64.deb
 7a6aa0b97470ad7ce88fa244a4480b34 10552 httpd optional libnginx-mod-http-modsecurity_1.0.3-1_amd64.buildinfo
 7d96269bdba70439667cec5b00fc2ecb 25532 httpd optional libnginx-mod-http-modsecurity_1.0.3-1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=RIlZ
-----END PGP SIGNATURE-----

--- End Message ---