# apxs -cia mod_security.c
-------------------------
--activate-module=src/modules/extra/mod_security
--enable-module=security
-------------------------
--enable-security 
--with-module=proxy:mod_security.c
-------------------------
<IfModule mod_security.c>
    SecFilterEngine On
</IfModule>
-------------------------
SecFilterScanPOST On
SecFilterCheckURLEncoding On
SecFilterCheckUnicodeEncoding On
-------------------------
SecFilterForceByteRange 32 126
-------------------------
SecFilter "\.\./"
-------------------------
SecFilter "<[[:space:]]*script"
-------------------------
SecFilter "<(.|\n)+>"
-------------------------
SecFilterSelective COOKIE_sessionid "!^(|[0-9]{1,9})$"
-------------------------
SecFilterSelective "HTTP_USER_AGENT|HTTP_HOST" "^$"
-------------------------
SecFilterSelective "HTTP_CONTENT_TYPE" multipart/form-data
-------------------------
SecFilterSelective "HTTP_ACCEPT" "^$" log,pass
-------------------------
SecFilterDefaultAction "deny,log,status:500"
-------------------------
SecAuditEngine On
SecAuditLog logs/audit_log
