Topic: modsecurity: updating blacklist without restarting Apache?

[CrisLander]

Hi, I have a question: I recently installed modsecurity and created a few rules, one of them being blocking access to a blacklist that I keep in a separate file. It all works perfectly, but every time I change something in the blacklist file I need to restart Apache so that the new blacklist is used.

Is there any way to be able to load the new blacklist without having to restart Apache? I was hoping that by keeping the blacklist in a separate file and not in the modsecurity config files I would not only be able to keep things clean, but I would also be able to update the blacklist as needed in real time. I'm using a simple IP comparison with @pmFromFile, and if possible, I wouldn't want to restart the server every time I update the file..

Thanks!

[James Blond]

AFAIK you have to restart the server.

What is your issue with restarting apache?

[CrisLander]

Awfully late reply, but the problem with restarting is that this is supposed to be a 24/7 server, and it shouldn't be ever down.

But using a soft reboot is working so far, as threads that are busy aren't killed and replaced until they have finished.

[James Blond]

reboot? You don't have to reboot windows. Just reload apache with