-
Notifications
You must be signed in to change notification settings - Fork 10
/
Copy pathmain.yml
51 lines (45 loc) · 1.59 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
---
# defaults file for ansible-role-nginx-modsec3-crs3
# These are packages you want kept even after compiling has finished
nginx_modsec3_crs3_debian_pre_reqs:
- git
- libgeoip-dev
- libmaxminddb-dev
- libmaxminddb0
- libcurl4-openssl-dev
- liblua5.3-dev
- libyajl-dev
- libxml2-dev
- libpcre2-dev
#- libpcre++-dev #hmm I wonder if might need libpcre (1) still ?
- ssdeep
- libfuzzy-dev
- libssl-dev
- zlib1g-dev
# These are packages which are removed after compiling has finished
nginx_modsec3_crs3_debian_compiler_reqs:
- build-essential
# These are packages you want kept even after compiling has finished
nginx_modsec3_crs3_redhat_pre_reqs:
- git
- GeoIP-devel #modsec, might not exist in EL9 ?
#- libmaxminddb-devel #modsec, but lets remove as EL8 has a broken compile error
#- libmaxminddb #modsec, but same as above
- curl-devel #modsec
- lua-devel #modsec
- yajl-devel #modsec
- libxml2-devel #modsec
- lmdb-devel #modsec
#- xz-devel # unsure if still needed
- pcre-devel #modsec, needed even if pcre2 is used
- pcre2-devel #modsec
- ssdeep-devel # used by modsec
- ssdeep-libs # used by modsec
- openssl-devel #nginx
- libxslt-devel #modsec
# These are packages which are removed after compiling has finished
nginx_modsec3_crs3_redhat_compiler_reqs:
- "@Development tools"
nginx_modsec3_crs3_geoip_enabled: false
nginx_modsec3_crs3_maxmind_enabled: false
nginx_modsec3_crs3_core_rule_set_version: "v4.0.0"