Centos+apache 2.2+mod_security2

[Sanyh]

Поставил себе на сервер mod_security2
Centos+apache 2.2+mod_security2+nginx,
правила прописанные в whm по дефолту работают а вот если в них добавляю к примеру:

Код: Выделить всё

    # Раскритие конфигов
    SecFilter /etc/password

    # Чтения выше корня
    SecFilter "\.\./"

выдается ошибка:

Код: Выделить всё

Unable to verify Apache restart. Could not signal pid from pid file and no httpd process found in process list.

If apache restart reported success but it failed soon after, it may be caused by oddities with mod_ssl.

You should run /scripts/ssl_crt_status as part of your troubleshooting process. Pass it --help for more details.

Also be sure to examine apache's variouse log files.
Apache Restart Output:
Syntax error on line 173 of /usr/local/apache/conf/modsec2.user.conf:
Invalid command 'SecFilter', perhaps misspelled or defined by a module not included in the server configuration

Log:
[Wed Dec 22 08:38:17 2010] [error] [client ipservera] File does not exist: /usr/local/apache/htdocs/~rbt0
[Wed Dec 22 08:38:21 2010] [notice] cannot use a full URL in a 401 ErrorDocument directive --- ignoring!
[Wed Dec 22 08:38:23 2010] [error] [client ipservera ModSecurity: Access denied with code 406 (phase 2). Invalid UTF-8 encoding: invalid byte value in character at REQUEST_FILENAME. [offset "15"] [file "/usr/local/apache/conf/modsec2.user.conf"] [line "23"] [id "950801"] [msg "UTF8 Encoding Abuse Attack Attempt"] [severity "WARNING"] [hostname "www.lo.ru"] [uri "/adv_text/proda\\xb8tca_kyznecnii__32175/index.html"] [unique_id "TRGOz17lQNIAADzyDB0AAAAQ"]
[Wed Dec 22 08:38:23 2010] [error] [client ipservera File does not exist: /home/za/public_html/lostboard/406.shtml
[Wed Dec 22 08:38:23 2010] [notice] cannot use a full URL in a 401 ErrorDocument directive --- ignoring!
[Wed Dec 22 08:38:25 2010] [error] [client ipservera Directory index forbidden by Options directive: /home/ku6/public_html/forum/, referer: http://www..ru/forum/
[Wed Dec 22 08:38:33 2010] [error] [client ipservera] File does not exist: /usr/local/apache/htdocs/~rbt0
[Wed Dec 22 08:38:33 2010] [notice] Graceful restart requested, doing restart
[Wed Dec 22 08:38:33 2010] [error] (9)Bad file descriptor: apr_socket_accept: (client socket)
Syntax error on line 173 of /usr/local/apache/conf/modsec2.user.conf:
Invalid command 'SecFilter', perhaps misspelled or defined by a module not included in the server configuration

[Хостинг HostFood.ru]

Тарифы на хостинг в России, от 12 рублей: https://www.host-food.ru/tariffs/hosting/
Тарифы на виртуальные сервера (VPS/VDS/KVM) в РФ, от 189 руб.: https://www.host-food.ru/tariffs/virtualny-server-vps/
Выделенные сервера, Россия, Москва, от 2000 рублей (HP Proliant G5, Intel Xeon E5430 (2.66GHz, Quad-Core, 12Mb), 8Gb RAM, 2x300Gb SAS HDD, P400i, 512Mb, BBU):
https://www.host-food.ru/tariffs/vydelennyi-server-ds/
Недорогие домены в популярных зонах: https://www.host-food.ru/domains/

[unix-admin]

как устанавливали apache и mod_security ?