# diff -u ../../modsecurity/modsecurity.conf.sample MM-Base.conf
--- ../../modsecurity/modsecurity.conf.sample   2018-11-04 09:12:19.000000000 +0900
+++ MM-Base.conf        2018-11-14 16:54:42.293424000 +0900
@@ -35,7 +35,8 @@
 # to the size of data, with files excluded. You want to keep that value as
 # low as practical.
 #
-SecRequestBodyLimit 13107200
+#SecRequestBodyLimit 13107200
+SecRequestBodyLimit 104857600
 SecRequestBodyNoFilesLimit 131072

 # What do do if the request body size is above our configured limit.
@@ -103,7 +104,8 @@
 # Do keep in mind that enabling this directive does increases both
 # memory consumption and response latency.
 #
-SecResponseBodyAccess On
+#SecResponseBodyAccess On
+SecResponseBodyAccess Off

 # Which response MIME types do you want to inspect? You should adjust the
 # configuration below to catch documents but avoid static files
@@ -129,13 +131,15 @@
 # This default setting is chosen due to all systems have /tmp available however,
 # this is less than ideal. It is recommended that you specify a location that's private.
 #
-SecTmpDir /tmp/
+#SecTmpDir /tmp/
+SecTmpDir /var/modsecurity

 # The location where ModSecurity will keep its persistent data.  This default setting
 # is chosen due to all systems have /tmp available however, it
 # too should be updated to a place that other users can't access.
 #
-SecDataDir /tmp/
+#SecDataDir /tmp/
+SecDataDir /var/modsecurity


 # -- File uploads handling configuration -------------------------------------
@@ -174,7 +178,8 @@
 # trigger a server error (determined by a 5xx or 4xx, excluding 404,
 # level response status codes).
 #
-SecAuditEngine RelevantOnly
+#SecAuditEngine RelevantOnly
+SecAuditEngine off
 SecAuditLogRelevantStatus "^(?:5|4(?!04))"

 # Log everything we know about a transaction.
@@ -184,7 +189,8 @@
 # assumes that you will use the audit log only ocassionally.
 #
 SecAuditLogType Serial
-SecAuditLog /var/log/modsec_audit.log
+#SecAuditLog /var/log/modsec_audit.log
+SecAuditLog /var/log/nginx/modsec_audit.log

 # Specify the path for concurrent audit logging.
 #SecAuditLogStorageDir /opt/modsecurity/var/audit/