{"id":14263,"date":"2025-08-18T11:10:06","date_gmt":"2025-08-18T07:40:06","guid":{"rendered":"https:\/\/maralhost.com\/kb\/articles\/whm-cpanel\/%d9%85%d8%ac%d9%85%d9%88%d8%b9%d9%87-%d9%82%d9%88%d8%a7%d9%86%db%8c%d9%86-%d8%a7%d8%b5%d9%84%db%8c-owasp-modsecurity\/"},"modified":"2025-08-18T11:28:22","modified_gmt":"2025-08-18T07:58:22","slug":"owasp-modsecurity-crs","status":"publish","type":"docs","link":"https:\/\/maralhost.com\/kb\/docs\/whm-cpanel\/owasp-modsecurity-crs\/","title":{"rendered":"\u0645\u062c\u0645\u0648\u0639\u0647 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0627\u0635\u0644\u06cc OWASP ModSecurity"},"content":{"rendered":"\n

\u062a\u0639\u0627\u0631\u06cc\u0641 \u06a9\u0644\u06cc\u062f\u06cc (Glossary)<\/strong><\/h2>\n\n\n\n
    \n
  1. OWASP (Open Web Application Security Project)<\/strong>
    \u067e\u0631\u0648\u0698\u0647\u200c\u0627\u06cc \u063a\u06cc\u0631\u0627\u0646\u062a\u0641\u0627\u0639\u06cc \u06a9\u0647 \u0628\u0647\u0628\u0648\u062f \u0627\u0645\u0646\u06cc\u062a \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631\u0647\u0627\u06cc \u062a\u062d\u062a \u0648\u0628 \u0631\u0627 \u0647\u062f\u0641 \u062f\u0627\u0631\u062f \u0648 \u0627\u0633\u062a\u0627\u0646\u062f\u0627\u0631\u062f\u0647\u0627 \u0648 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc\u06cc \u0628\u0631\u0627\u06cc \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc\u200c\u06a9\u0646\u062f.<\/li>\n\n\n\n
  2. ModSecurity<\/strong>
    \u06cc\u06a9 \u0645\u0627\u0698\u0648\u0644 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u0631\u0627\u06cc \u0648\u0628 \u0633\u0631\u0648\u0631 Apache (\u0648 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631) \u0627\u0633\u062a \u06a9\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u200c\u0647\u0627\u06cc HTTP \u0631\u0627 \u0628\u0631\u0631\u0633\u06cc \u0648 \u0628\u0631 \u0627\u0633\u0627\u0633 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0645\u0634\u062e\u0635\u060c \u062d\u0645\u0644\u0627\u062a \u0627\u062d\u062a\u0645\u0627\u0644\u06cc \u0631\u0627 \u0645\u0633\u062f\u0648\u062f \u06a9\u0646\u062f.<\/li>\n\n\n\n
  3. CRS (Core Rule Set)<\/strong>
    \u0645\u062c\u0645\u0648\u0639\u0647 \u0642\u0648\u0627\u0646\u06cc\u0646 \u067e\u06cc\u0634\u200c\u0641\u0631\u0636 ModSecurity \u06a9\u0647 \u062a\u0648\u0633\u0637 OWASP \u0627\u0631\u0627\u0626\u0647 \u0634\u062f\u0647 \u0648 \u0628\u0631\u0627\u06cc \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0648\u0628\u200c\u0633\u0627\u06cc\u062a\u200c\u0647\u0627 \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a \u0645\u0639\u0645\u0648\u0644 \u0648 \u0634\u0646\u0627\u062e\u062a\u0647\u200c\u0634\u062f\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f.<\/li>\n\n\n\n
  4. False Positive (\u0645\u062b\u0628\u062a \u06a9\u0627\u0630\u0628)<\/strong>
    \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u06cc\u06a9 \u0633\u06cc\u0633\u062a\u0645 \u0627\u0645\u0646\u06cc\u062a\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0642\u0627\u0646\u0648\u0646\u06cc \u0631\u0627 \u0628\u0647 \u0627\u0634\u062a\u0628\u0627\u0647 \u0628\u0647\u200c\u0639\u0646\u0648\u0627\u0646 \u062d\u0645\u0644\u0647 \u062a\u0634\u062e\u06cc\u0635 \u062f\u0647\u062f \u0648 \u0645\u0633\u062f\u0648\u062f \u06a9\u0646\u062f.<\/li>\n\n\n\n
  5. DoS (Denial of Service)<\/strong>
    \u0646\u0648\u0639\u06cc \u062d\u0645\u0644\u0647 \u06a9\u0647 \u0628\u0627 \u0627\u0631\u0633\u0627\u0644 \u062d\u062c\u0645 \u0628\u0627\u0644\u0627\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u06cc\u0627 \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u200c\u0647\u0627\u06cc \u0645\u062e\u0631\u0628\u060c \u0645\u0646\u0627\u0628\u0639 \u0633\u0631\u0648\u0631 \u0631\u0627 \u0645\u0635\u0631\u0641 \u06a9\u0631\u062f\u0647 \u0648 \u0628\u0627\u0639\u062b \u0627\u062e\u062a\u0644\u0627\u0644 \u062f\u0631 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0642\u0627\u0646\u0648\u0646\u06cc \u0645\u06cc\u200c\u0634\u0648\u062f.<\/li>\n\n\n\n
  6. IP Reputation<\/strong>
    \u0628\u0631\u0631\u0633\u06cc \u0633\u0627\u0628\u0642\u0647 \u0648 \u0627\u0639\u062a\u0628\u0627\u0631 \u06cc\u06a9 \u0622\u062f\u0631\u0633 IP \u0628\u0631\u0627\u06cc \u062a\u0634\u062e\u06cc\u0635 \u0641\u0639\u0627\u0644\u06cc\u062a\u200c\u0647\u0627\u06cc \u0645\u062e\u0631\u0628 \u06cc\u0627 \u0645\u0634\u06a9\u0648\u06a9.<\/li>\n\n\n\n
  7. XSS (Cross-Site Scripting)<\/strong>
    \u062d\u0645\u0644\u0647\u200c\u0627\u06cc \u06a9\u0647 \u0637\u06cc \u0622\u0646 \u0645\u0647\u0627\u062c\u0645 \u0627\u0633\u06a9\u0631\u06cc\u067e\u062a\u200c\u0647\u0627\u06cc \u0645\u062e\u0631\u0628 \u0631\u0627 \u062f\u0631 \u0635\u0641\u062d\u0627\u062a \u0648\u0628 \u062a\u0632\u0631\u06cc\u0642 \u0645\u06cc\u200c\u06a9\u0646\u062f \u062a\u0627 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u062f\u06cc\u06af\u0631 \u06cc\u0627 \u0633\u0631\u0648\u0631 \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u062f\u0647\u062f.<\/li>\n\n\n\n
  8. SQL Injection<\/strong>
    \u062d\u0645\u0644\u0647\u200c\u0627\u06cc \u06a9\u0647 \u062f\u0631 \u0622\u0646 \u0645\u0647\u0627\u062c\u0645 \u062f\u0633\u062a\u0648\u0631\u0627\u062a SQL \u0645\u062e\u0631\u0628 \u0631\u0627 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 \u0627\u0631\u0633\u0627\u0644 \u0645\u06cc\u200c\u06a9\u0646\u062f \u0648 \u0628\u0647 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062d\u0633\u0627\u0633 \u062f\u0633\u062a\u0631\u0633\u06cc \u067e\u06cc\u062f\u0627 \u0645\u06cc\u200c\u06a9\u0646\u062f.<\/li>\n\n\n\n
  9. LFI (Local File Inclusion)<\/strong>
    \u062d\u0645\u0644\u0647\u200c\u0627\u06cc \u06a9\u0647 \u062f\u0631 \u0622\u0646 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u0645\u062d\u0644\u06cc \u0633\u0631\u0648\u0631 \u062a\u0648\u0633\u0637 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0631\u0627 \u06cc\u0627 \u0645\u0634\u0627\u0647\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u0646\u062f\u060c \u06a9\u0647 \u0645\u0639\u0645\u0648\u0644\u0627\u064b \u0646\u0628\u0627\u06cc\u062f \u0642\u0627\u0628\u0644 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0627\u0634\u0646\u062f.<\/li>\n\n\n\n
  10. RFI (Remote File Inclusion)<\/strong>
    \u062d\u0645\u0644\u0647\u200c\u0627\u06cc \u0645\u0634\u0627\u0628\u0647 LFI \u0648\u0644\u06cc \u0641\u0627\u06cc\u0644\u200c\u0647\u0627 \u0627\u0632 \u0645\u0646\u0627\u0628\u0639 \u062e\u0627\u0631\u062c\u06cc \u0628\u0627\u0631\u06af\u0630\u0627\u0631\u06cc \u0645\u06cc\u200c\u0634\u0648\u0646\u062f \u0648 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u06a9\u062f\u0647\u0627\u06cc \u0645\u062e\u0631\u0628 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u0646\u062f.<\/li>\n\n\n\n
  11. Session Fixation<\/strong>
    \u062d\u0645\u0644\u0647\u200c\u0627\u06cc \u06a9\u0647 \u0645\u0647\u0627\u062c\u0645 \u0633\u0639\u06cc \u0645\u06cc\u200c\u06a9\u0646\u062f \u06cc\u06a9 \u0634\u0646\u0627\u0633\u0647 \u0646\u0634\u0633\u062a (Session ID) \u067e\u06cc\u0634\u200c\u0628\u06cc\u0646\u06cc\u200c\u0634\u062f\u0647 \u0628\u0631\u0627\u06cc \u06a9\u0627\u0631\u0628\u0631 \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u062f \u062a\u0627 \u0628\u0647 \u0646\u0634\u0633\u062a \u0627\u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u067e\u06cc\u062f\u0627 \u06a9\u0646\u062f.<\/li>\n\n\n\n
  12. Configuration File (\u0641\u0627\u06cc\u0644 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc)<\/strong>
    \u0641\u0627\u06cc\u0644\u06cc \u06a9\u0647 \u0634\u0627\u0645\u0644 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a ModSecurity CRS \u0627\u0633\u062a \u0648 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0645\u06cc\u200c\u06af\u0648\u06cc\u062f \u0686\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9\u06cc \u0631\u0627 \u0645\u0633\u062f\u0648\u062f \u06cc\u0627 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f.<\/li>\n<\/ol>\n\n\n
    \n
    \"\"<\/figure>\n<\/div>\n\n\n

    \u0645\u0631\u0648\u0631 \u06a9\u0644\u06cc<\/h3>\n\n\n\n

    OWASP ModSecurity CRS (\u0645\u062c\u0645\u0648\u0639\u0647 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0627\u0635\u0644\u06cc) \u0645\u062c\u0645\u0648\u0639\u0647\u200c\u0627\u06cc \u0627\u0632 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0627\u0633\u062a \u06a9\u0647 \u0645\u0627\u0698\u0648\u0644 ModSecurity \u062f\u0631 Apache \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u062d\u0641\u0627\u0638\u062a \u0627\u0632 \u0633\u0631\u0648\u0631 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f. \u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0633\u0631\u0648\u0631 \u0634\u0645\u0627 \u0631\u0627 \u06a9\u0627\u0645\u0644\u0627\u064b \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a \u0627\u06cc\u0645\u0646 \u0646\u0645\u06cc\u200c\u06a9\u0646\u0646\u062f\u060c \u0627\u0645\u0627 \u0633\u0637\u062d \u062d\u0641\u0627\u0638\u062a\u06cc \u0642\u0627\u0628\u0644 \u062a\u0648\u062c\u0647\u06cc \u0628\u0631\u0627\u06cc \u0628\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627\u06cc \u0648\u0628 \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f.<\/p>\n\n\n

    \n
    \"\"<\/figure>\n<\/div>\n\n\n

    \u062f\u0631\u0628\u0627\u0631\u0647 OWASP<\/h3>\n\n\n\n

    \u0686\u0631\u0627 \u0628\u0627\u06cc\u062f \u0627\u0632 OWASP ModSecurity CRS \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u0645\u061f<\/h4>\n\n\n\n
      \n
    1. \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0637\u0631\u0627\u062d\u06cc \u0646\u0627\u0627\u0645\u0646 \u0628\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627\u06cc \u0648\u0628<\/strong>
      \u0642\u0648\u0627\u0646\u06cc\u0646 ModSecurity \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u06cc\u06a9 \u0644\u0627\u06cc\u0647 \u062d\u0641\u0627\u0638\u062a\u06cc \u0628\u0631\u0627\u06cc \u0628\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627\u06cc \u0648\u0628 \u0645\u0627\u0646\u0646\u062f WordPress\u060c phpBB \u0648 \u0633\u0627\u06cc\u0631 \u0628\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627 \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u0646\u062f. \u062d\u062a\u06cc \u0627\u06af\u0631 \u0628\u0631\u0646\u0627\u0645\u0647\u200c\u0627\u06cc \u0628\u0647\u200c\u0631\u0648\u0632 \u0646\u0628\u0627\u0634\u062f \u06cc\u0627 \u062a\u0648\u0633\u0639\u0647\u200c\u062f\u0647\u0646\u062f\u0647 \u0627\u0634\u062a\u0628\u0627\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0631\u062f\u0647 \u0628\u0627\u0634\u062f\u060c ModSecurity \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u062d\u0645\u0644\u0647 \u0631\u0627 \u0642\u0628\u0644 \u0627\u0632 \u0631\u0633\u06cc\u062f\u0646 \u0628\u0647 \u0628\u0631\u0646\u0627\u0645\u0647 \u0645\u0633\u062f\u0648\u062f \u06a9\u0646\u062f.<\/li>\n\n\n\n
    2. \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0633\u0637\u062d \u0633\u06cc\u0633\u062a\u0645\u200c\u0639\u0627\u0645\u0644<\/strong>
      \u0628\u0631\u062e\u06cc \u062d\u0645\u0644\u0627\u062a \u0645\u0645\u06a9\u0646 \u0627\u0633\u062a \u0633\u06cc\u0633\u062a\u0645\u200c\u0639\u0627\u0645\u0644 \u0633\u0631\u0648\u0631 \u0631\u0627 \u0647\u062f\u0641 \u0642\u0631\u0627\u0631 \u062f\u0647\u0646\u062f. \u0628\u0647\u200c\u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u062f\u0631 \u0633\u0627\u0644 \u06f2\u06f0\u06f1\u06f4 \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 Bash \u0648\u062c\u0648\u062f \u062f\u0627\u0634\u062a \u0648 \u0645\u062a\u062e\u0635\u0635\u0627\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0642\u0648\u0627\u0646\u06cc\u0646\u06cc \u0628\u0631\u0627\u06cc ModSecurity \u0627\u06cc\u062c\u0627\u062f \u06a9\u0631\u062f\u0646\u062f \u062a\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0627\u0632 \u0637\u0631\u06cc\u0642 Apache \u0645\u0633\u062f\u0648\u062f \u0634\u0648\u062f \u062a\u0627 \u0632\u0645\u0627\u0646 \u0627\u0646\u062a\u0634\u0627\u0631 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u060c \u0633\u0631\u0648\u0631 \u0627\u06cc\u0645\u0646 \u0628\u0645\u0627\u0646\u062f.<\/li>\n\n\n\n
    3. \u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0645\u062e\u0631\u0628 \u0639\u0645\u0648\u0645\u06cc<\/strong>
      \u0628\u0631\u062e\u06cc \u062a\u0647\u062f\u06cc\u062f\u0627\u062a \u0645\u0645\u06a9\u0646 \u0627\u0633\u062a \u0628\u0631\u0646\u0627\u0645\u0647 \u06cc\u0627 \u0633\u0631\u0648\u0631 \u0631\u0627 \u0628\u0647\u200c\u0637\u0648\u0631 \u0645\u0633\u062a\u0642\u06cc\u0645 \u0647\u062f\u0641 \u0646\u06af\u06cc\u0631\u062f\u060c \u0645\u0627\u0646\u0646\u062f \u062d\u0645\u0644\u0627\u062a DoS. \u0642\u0648\u0627\u0646\u06cc\u0646 ModSecurity \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u062a\u0623\u062b\u06cc\u0631 \u0686\u0646\u06cc\u0646 \u062d\u0645\u0644\u0627\u062a\u06cc \u0631\u0627 \u06a9\u0627\u0647\u0634 \u062f\u0647\u0646\u062f.<\/li>\n<\/ol>\n\n\n\n

      \u062e\u0637\u0631\u0627\u062a<\/h3>\n\n\n\n

      \u0645\u0627\u0646\u0646\u062f \u0647\u0631 \u0645\u06a9\u0627\u0646\u06cc\u0632\u0645 \u0645\u0633\u062f\u0648\u062f\u0633\u0627\u0632\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9\u060c \u0642\u0648\u0627\u0646\u06cc\u0646 OWASP \u0645\u0645\u06a9\u0646 \u0627\u0633\u062a \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0642\u0627\u0646\u0648\u0646\u06cc \u0631\u0627 \u0645\u0633\u062f\u0648\u062f \u06a9\u0646\u0646\u062f (\u0645\u062b\u0628\u062a \u06a9\u0627\u0630\u0628). \u0628\u0646\u0627\u0628\u0631\u0627\u06cc\u0646 \u0644\u0627\u0632\u0645 \u0627\u0633\u062a \u0628\u0647\u200c\u0637\u0648\u0631 \u0645\u0646\u0638\u0645 \u06af\u0632\u0627\u0631\u0634\u200c\u0647\u0627\u06cc \u0645\u0633\u062f\u0648\u062f\u0633\u0627\u0632\u06cc \u0631\u0627 \u062f\u0631 WHM \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u06cc\u062f (WHM \u00bb Home \u00bb Security Center \u00bb ModSecurity\u00ae Tools) \u062a\u0627 \u0645\u0637\u0645\u0626\u0646 \u0634\u0648\u06cc\u062f \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0642\u0627\u0646\u0648\u0646\u06cc \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0646\u0645\u06cc\u200c\u06af\u06cc\u0631\u0646\u062f.<\/p>\n\n\n\n

      \"\"<\/figure>\n\n\n\n
      \n\n\n\n

      \u0646\u062d\u0648\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 OWASP ModSecurity CRS<\/h3>\n\n\n\n
        \n
      1. \u0645\u0627\u0698\u0648\u0644 ModSecurity \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 EasyApache 4 \u062f\u0631 WHM \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f (WHM \u00bb Home \u00bb Software \u00bb EasyApache 4).<\/li>\n\n\n\n
      2. \u0633\u067e\u0633 \u0628\u0633\u062a\u0647 ea-modsec2-rules-owasp-crs<\/strong> \u0631\u0627 \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f:<\/li>\n<\/ol>\n\n\n
        \n
        \"\"<\/figure>\n<\/div>\n\n\n

        \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u0646\u0635\u0628:<\/strong><\/p>\n\n\n\n

        \u0633\u06cc\u0633\u062a\u0645\u200c\u0639\u0627\u0645\u0644<\/th>\u062f\u0633\u062a\u0648\u0631<\/th><\/tr><\/thead>
        CentOS 7<\/td>yum install ea-modsec2-rules-owasp-crs<\/code><\/td><\/tr>
        AlmaLinux \u0648 Rocky Linux<\/td>dnf install ea-modsec2-rules-owasp-crs<\/code><\/td><\/tr>
        Ubuntu<\/td>apt install --purge ea-modsec2-rules-owasp-crs<\/code><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

        \u0628\u0639\u062f \u0627\u0632 \u0641\u0639\u0627\u0644\u200c\u0633\u0627\u0632\u06cc \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc\u060c \u0642\u0648\u0627\u0646\u06cc\u0646 \u0641\u0639\u0627\u0644 \u0645\u06cc\u200c\u0634\u0648\u0646\u062f \u0648 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u06cc\u062f \u06af\u0632\u0627\u0631\u0634\u0627\u062a \u0648 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0645\u0633\u062f\u0648\u062f \u0634\u062f\u0647 \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 ModSecurity Tools \u0645\u0634\u0627\u0647\u062f\u0647 \u06a9\u0646\u06cc\u062f.<\/p>\n\n\n\n

        \n\n\n\n

        \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc<\/h3>\n\n\n\n
          \n
        • \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0634\u0627\u0645\u0644 \u0642\u0648\u0627\u0646\u06cc\u0646 \u062f\u0633\u062a\u0647\u200c\u0628\u0646\u062f\u06cc \u0634\u062f\u0647 \u0647\u0633\u062a\u0646\u062f \u062a\u0627 \u0645\u062f\u06cc\u0631\u06cc\u062a \u0622\u0646\u200c\u0647\u0627 \u0631\u0627\u062d\u062a\u200c\u062a\u0631 \u0628\u0627\u0634\u062f.<\/li>\n\n\n\n
        • \u0645\u0633\u06cc\u0631 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u067e\u06a9\u06cc\u062c OWASP: \/etc\/apache2\/conf.d\/modsec_vendor_configs\/OWASP3<\/code><\/li>\n<\/ul>\n\n\n\n
          \n\n\n\n

          \u0642\u0648\u0627\u0646\u06cc\u0646 \u0645\u0647\u0645 OWASP \u0648 \u062a\u0648\u0636\u06cc\u062d\u0627\u062a \u0622\u0646\u200c\u0647\u0627<\/h3>\n\n\n\n
          \u0646\u0627\u0645 \u0642\u0627\u0646\u0648\u0646<\/th>\u0645\u0633\u06cc\u0631 \u0641\u0627\u06cc\u0644<\/th>\u062a\u0648\u0636\u06cc\u062d<\/th><\/tr><\/thead>
          REQUEST-901-INITIALIZATION<\/td>modsec_vendor_configs\/OWASP\/rules\/REQUEST-901-INITIALIZATION.conf<\/td>\u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0627\u0648\u0644\u06cc\u0647 \u0628\u0631\u0627\u06cc \u0642\u0648\u0627\u0646\u06cc\u0646 \u0628\u0639\u062f\u06cc. \u063a\u06cc\u0631 \u0641\u0639\u0627\u0644 \u06a9\u0631\u062f\u0646 \u0622\u0646 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0639\u0645\u0644\u06a9\u0631\u062f \u0633\u0627\u06cc\u0631 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0631\u0627 \u0645\u062e\u062a\u0644 \u06a9\u0646\u062f.<\/td><\/tr>
          REQUEST-905-COMMON-EXCEPTIONS<\/td>REQUEST-905-COMMON-EXCEPTIONS.conf<\/td>\u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0645\u062b\u0628\u062a \u06a9\u0627\u0630\u0628 \u0628\u0631\u0627\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0642\u0627\u0646\u0648\u0646\u06cc.<\/td><\/tr>
          REQUEST-910-IP-REPUTATION<\/td>REQUEST-910-IP-REPUTATION.conf<\/td>\u0645\u0633\u062f\u0648\u062f\u0633\u0627\u0632\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0627\u0632 IP\u0647\u0627\u06cc \u0645\u062e\u0631\u0628 \u06cc\u0627 \u0645\u0646\u0627\u0637\u0642 \u067e\u0631\u062e\u0637\u0631.<\/td><\/tr>
          REQUEST-912-DOS-PROTECTION<\/td>REQUEST-912-DOS-PROTECTION.conf<\/td>\u06a9\u0627\u0647\u0634 \u0627\u062b\u0631 \u062d\u0645\u0644\u0627\u062a DoS \u0628\u0627 \u0645\u062f\u06cc\u0631\u06cc\u062a \u062a\u0631\u0627\u0641\u06cc\u06a9.<\/td><\/tr>
          REQUEST-913-SCANNER-DETECTION<\/td>REQUEST-913-SCANNER-DETECTION.conf<\/td>\u0645\u0633\u062f\u0648\u062f\u0633\u0627\u0632\u06cc \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u200c\u0647\u0627\u06cc \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631\u0647\u0627\u06cc \u0627\u0633\u06a9\u0646\u0631 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647.<\/td><\/tr>
          REQUEST-920-PROTOCOL-ENFORCEMENT<\/td>REQUEST-920-PROTOCOL-ENFORCEMENT.conf<\/td>\u0627\u062c\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f\u06cc\u062a\u200c\u0647\u0627\u06cc HTTP \u0648 \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062f\u0627\u062f\u0647\u200c\u0647\u0627\u06cc \u0646\u0627\u0645\u0639\u062a\u0628\u0631.<\/td><\/tr>
          REQUEST-921-PROTOCOL-ATTACK<\/td>REQUEST-921-PROTOCOL-ATTACK.conf<\/td>\u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062d\u0645\u0644\u0627\u062a HTTP Request Smuggling \u0648 Response Splitting.<\/td><\/tr>
          REQUEST-930-APPLICATION-ATTACK-LFI<\/td>REQUEST-930-APPLICATION-ATTACK-LFI.conf<\/td>\u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a Local File Inclusion.<\/td><\/tr>
          REQUEST-931-APPLICATION-ATTACK-RFI<\/td>REQUEST-931-APPLICATION-ATTACK-RFI.conf<\/td>\u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a Remote File Inclusion.<\/td><\/tr>
          REQUEST-933-APPLICATION-ATTACK-PHP<\/td>REQUEST-933-APPLICATION-ATTACK-PHP.conf<\/td>\u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062d\u0645\u0644\u0627\u062a PHP \u0634\u0627\u0645\u0644 Object Injection \u0648 Upload \u0645\u062e\u0631\u0628.<\/td><\/tr>
          REQUEST-941-APPLICATION-ATTACK-XSS<\/td>REQUEST-941-APPLICATION-ATTACK-XSS.conf<\/td>\u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a XSS.<\/td><\/tr>
          REQUEST-942-APPLICATION-ATTACK-SQLI<\/td>REQUEST-942-APPLICATION-ATTACK-SQLI.conf<\/td>\u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a SQL Injection.<\/td><\/tr>
          REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION<\/td>REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf<\/td>\u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062d\u0645\u0644\u0627\u062a Session Fixation.<\/td><\/tr>
          REQUEST-949-BLOCKING-EVALUATION<\/td>REQUEST-949-BLOCKING-EVALUATION.conf<\/td>\u0645\u0633\u062f\u0648\u062f\u0633\u0627\u0632\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0628\u0631 \u0627\u0633\u0627\u0633 \u0633\u0627\u06cc\u0631 \u0642\u0648\u0627\u0646\u06cc\u0646.<\/td><\/tr>
          RESPONSE-950-DATA-LEAKAGES<\/td>RESPONSE-950-DATA-LEAKAGES.conf<\/td>\u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0646\u0634\u062a \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0627\u0632 \u0633\u0631\u0648\u0631 \u0628\u0647 \u06a9\u0644\u0627\u06cc\u0646\u062a (\u0645\u062b\u0644\u0627\u064b \u0644\u06cc\u0633\u062a \u062f\u0627\u06cc\u0631\u06a9\u062a\u0648\u0631\u06cc\u200c\u0647\u0627).<\/td><\/tr>
          RESPONSE-951-DATA-LEAKAGES-SQL<\/td>RESPONSE-951-DATA-LEAKAGES-SQL.conf<\/td>\u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062f\u06cc\u062a\u0627\u0628\u06cc\u0633.<\/td><\/tr>
          RESPONSE-952-DATA-LEAKAGES-JAVA<\/td>RESPONSE-952-DATA-LEAKAGES-JAVA.conf<\/td>\u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0646\u0645\u0627\u06cc\u0634 \u062e\u0637\u0627\u0647\u0627\u06cc Java \u0628\u0647 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646.<\/td><\/tr>
          RESPONSE-953-DATA-LEAKAGES-PHP<\/td>RESPONSE-953-DATA-LEAKAGES-PHP.conf<\/td>\u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0646\u0645\u0627\u06cc\u0634 \u062c\u0632\u0626\u06cc\u0627\u062a \u062e\u0637\u0627\u0647\u0627\u06cc PHP.<\/td><\/tr>
          RESPONSE-954-DATA-LEAKAGES-IIS<\/td>RESPONSE-954-DATA-LEAKAGES-IIS.conf<\/td>\u0645\u062d\u0627\u0641\u0638\u062a \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0633\u0631\u0648\u0631\u0647\u0627\u06cc IIS.<\/td><\/tr>
          RESPONSE-959-BLOCKING-EVALUATION<\/td>RESPONSE-959-BLOCKING-EVALUATION.conf<\/td>\u0645\u0633\u062f\u0648\u062f\u0633\u0627\u0632\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u063a\u06cc\u0631\u0639\u0627\u062f\u06cc \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647 \u062a\u0648\u0633\u0637 \u0633\u0627\u06cc\u0631 \u0642\u0648\u0627\u0646\u06cc\u0646.<\/td><\/tr>
          RESPONSE-980-CORRELATION<\/td>RESPONSE-980-CORRELATION.conf<\/td>\u062c\u0645\u0639\u200c\u0622\u0648\u0631\u06cc \u062f\u0627\u062f\u0647 \u062f\u0631\u0628\u0627\u0631\u0647 \u062d\u0645\u0644\u0627\u062a \u0645\u0648\u0641\u0642 \u0648 \u0646\u0627\u0645\u0648\u0641\u0642 \u0633\u0631\u0648\u0631.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

          \u06a9\u06cc\u0627\u0646 \u067e\u0648\u0631<\/p>\n","protected":false},"excerpt":{"rendered":"

          \u062a\u0639\u0627\u0631\u06cc\u0641 \u06a9\u0644\u06cc\u062f\u06cc (Glossary) \u0645\u0631\u0648\u0631 \u06a9\u0644\u06cc OWASP ModSecurity CRS (\u0645\u062c\u0645\u0648\u0639\u0647 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0627\u0635\u0644\u06cc) \u0645\u062c\u0645\u0648\u0639\u0647\u200c\u0627\u06cc \u0627\u0632 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0627\u0633\u062a \u06a9\u0647 \u0645\u0627\u0698\u0648\u0644 ModSecurity \u062f\u0631 Apache \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u062d\u0641\u0627\u0638\u062a \u0627\u0632 \u0633\u0631\u0648\u0631 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f. \u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0633\u0631\u0648\u0631 \u0634\u0645\u0627 \u0631\u0627 \u06a9\u0627\u0645\u0644\u0627\u064b \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a \u0627\u06cc\u0645\u0646 \u0646\u0645\u06cc\u200c\u06a9\u0646\u0646\u062f\u060c \u0627\u0645\u0627 \u0633\u0637\u062d \u062d\u0641\u0627\u0638\u062a\u06cc \u0642\u0627\u0628\u0644 \u062a\u0648\u062c\u0647\u06cc \u0628\u0631\u0627\u06cc \u0628\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627\u06cc \u0648\u0628 \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f. \u062f\u0631\u0628\u0627\u0631\u0647 OWASP \u0686\u0631\u0627 \u0628\u0627\u06cc\u062f \u0627\u0632 […]<\/p>\n","protected":false},"author":3,"featured_media":14266,"parent":13241,"menu_order":62,"comment_status":"open","ping_status":"closed","template":"","doc_tag":[],"class_list":["post-14263","docs","type-docs","status-publish","has-post-thumbnail","hentry"],"acf":[],"author_avatar":"https:\/\/maralhost.com\/kb\/wp-content\/litespeed\/avatar\/c59fc140fa83b542ed78a005738a60da.jpg?ver=1778441380","author_name":"Shayan Kianpoor","_links":{"self":[{"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/docs\/14263","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/types\/docs"}],"author":[{"embeddable":true,"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/comments?post=14263"}],"version-history":[{"count":2,"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/docs\/14263\/revisions"}],"predecessor-version":[{"id":14270,"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/docs\/14263\/revisions\/14270"}],"up":[{"embeddable":true,"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/docs\/13241"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/media\/14266"}],"wp:attachment":[{"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/media?parent=14263"}],"wp:term":[{"taxonomy":"doc_tag","embeddable":true,"href":"https:\/\/maralhost.com\/kb\/wp-json\/wp\/v2\/doc_tag?post=14263"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}