erictyl
/
install_r45_on_ubuntu_1804lts_doc
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update install_nginx.sh

This commit is contained in:
BoHung Chiu 2023-06-29 08:44:24 +08:00
parent 2acf3030f4
commit a0a78f9881
1 changed files with 39 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
install_nginx.sh
View File

@ -72,6 +72,23 @@ extra_remove_packages=""
extra_build_nginx_cmd="true" extra_build_nginx_cmd="true"
if [[ "$@" == *"--install-modsecurity"* ]];then if [[ "$@" == *"--install-modsecurity"* ]];then
install_modsecurity="1" install_modsecurity="1"
if [[ "$ubuntu_ver" < "16" ]]; then #use 3.0.6
sudo bash -l -c "
cd /root &&
apt-get install -y apt-utils autoconf automake build-essential git libcurl4-openssl-dev libgeoip-dev liblmdb-dev libpcre++-dev libtool libxml2-dev libyajl-dev pkgconf wget zlib1g-dev &&
git clone https://github.com/SpiderLabs/ModSecurity.git &&
cd ModSecurity &&
git checkout v3.0.6 &&
git submodule init &&
git submodule update &&
./build.sh &&
./configure &&
make &&
make install &&
cd .. &&
git clone --depth 1 https://github.com/SpiderLabs/ModSecurity-nginx.git
"
else
sudo bash -l -c " sudo bash -l -c "
cd /root && cd /root &&
apt-get install -y apt-utils autoconf automake build-essential git libcurl4-openssl-dev libgeoip-dev liblmdb-dev libpcre++-dev libtool libxml2-dev libyajl-dev pkgconf wget zlib1g-dev && apt-get install -y apt-utils autoconf automake build-essential git libcurl4-openssl-dev libgeoip-dev liblmdb-dev libpcre++-dev libtool libxml2-dev libyajl-dev pkgconf wget zlib1g-dev &&
@ -86,8 +103,17 @@ if [[ "$@" == *"--install-modsecurity"* ]];then
cd .. && cd .. &&
git clone --depth 1 https://github.com/SpiderLabs/ModSecurity-nginx.git git clone --depth 1 https://github.com/SpiderLabs/ModSecurity-nginx.git
" "
fi
nginx_configure="$nginx_configure --add-dynamic-module=../ModSecurity-nginx" nginx_configure="$nginx_configure --add-dynamic-module=../ModSecurity-nginx"
fi fi
if [[ "$@" == *"--install-naxsi"* ]];then
install_naxsi="1"
sudo bash -l -c "
cd /root &&
git clone --depth 1 https://github.com/nbs-system/naxsi.git
"
nginx_configure="$nginx_configure --add-module=../naxsi/naxsi_src"
fi
if [[ "$@" == *"--install-passenger"* ]];then if [[ "$@" == *"--install-passenger"* ]];then
install_passenger="1" install_passenger="1"
extra_remove_packages="$extra_remove_packages passenger" extra_remove_packages="$extra_remove_packages passenger"
@ -177,6 +203,7 @@ if [[ "$nginx_ver" < $nginx_target_ver ]] || [[ "$1" == '--force' ]] || [[ "$ins
cd /root/nginx-$nginx_target_ver && \ cd /root/nginx-$nginx_target_ver && \
make modules && \ make modules && \
cp -f objs/ngx_http_modsecurity_module.so /etc/nginx/modules/. && \ cp -f objs/ngx_http_modsecurity_module.so /etc/nginx/modules/. && \
mkdir -p /etc/nginx/modules-enabled && \
echo 'load_module modules/ngx_http_modsecurity_module.so;' > /etc/nginx/modules-enabled/50-mod-modsecurity.conf && \ echo 'load_module modules/ngx_http_modsecurity_module.so;' > /etc/nginx/modules-enabled/50-mod-modsecurity.conf && \
mkdir -p /etc/nginx/modsec && \ mkdir -p /etc/nginx/modsec && \
wget -P /etc/nginx/modsec/ https://raw.githubusercontent.com/SpiderLabs/ModSecurity/v3/master/modsecurity.conf-recommended && \ wget -P /etc/nginx/modsec/ https://raw.githubusercontent.com/SpiderLabs/ModSecurity/v3/master/modsecurity.conf-recommended && \