Is there any way to allow customer disable ModSecurity rules directly? Because at this time, I have to manage all tickets related to ModSecurity one by one and setup them in the CMC at the WHM side.
i triggered modsec rule for testing.
I tailed /usr/local/apache/logs/modsec_audit.log and i saw modsec was trigger
when i check to whm > cmc > modsec log, i can't see anything.
so i try modsec plugin from cpanel (WHM > Plugins > Mod Security) i can see the record.
Hi there. I've been trying to update CMC on a new server through WHM, and updates have been failing for several weeks. The server is running CENTOS 7.5 standard v74.0.9
Here are the update messages:
Retrieving new cmc package...
Unpacking new cmc package...
tar (child): cmc.tgz: Cannot open: No such file or directory
tar (child): Error is not recoverable: exiting now
tar: Child returned...
trying to update a rule using 3.0.2 and i get this below. also it doesn't seem to be working (use to work not sure if its been deprecated or this software is dead? any fix would be apprecated
Initial configuration generation failed with the following message:
The “/usr/sbin/httpd -DSSL -t -f /etc/apache2/conf/httpd.conf.work.3e8285bb.cfgcheck -C Include /etc/apache2/conf.modules.d/*.conf ”...
I add user in this file /etc/csf/csf.pignore
Then I put:
================
PT_USERMEM = 0
================
and
================
PT_USERTIME = 0
================
Then I restart CSF with this command below:
=================
csf -r
=================
But, I continue to receive these emails and I do not know what to do
My question is simple : Is cmc still useful/can work with the nowadays cpanel server?
I asked this because it is pretty confusing now to me that cpanel already comes with its cpanel modsecurity tools that can setup different rules/disable rules, More importantly, it looks like it is not working now?
For example, in cmc the first option can let you disable the mod_security completely, i...
We have some security rules deactivated in ConfigServer ModSec Control . The problem is that even with the rules disabled there are still clients being blocked in our firewall because of them.
The rules are: 970901 and 981205
In our logs:
ModSecurity: Access denied with code 403 (phase 4). Pattern match ^5\\\\d{2}$ at RESPONSE_STATUS.
Hi.
Thanks for the time-saver.
We have been using it.
However, since we upgraded to v66, CMC U is blank.
Please is there any ETA for an update?
Thanks!!
One of our clients reported an issue with loading their domain. On checking we could see a mod security rule (ID: id 1234123413 ) has been triggered and which caused the issue. We have then whitelisted the rule in the server, but upon checking we could see that the rule was not whitelisted properly and triggered again.
Had to replace a hard drive in my server and kept the old one mounted for reference. Would like to transfer over my previous whitelisted rule id's for each domain that I created on the old drive but cannot seem to find the right files. Anyone point me in the right direction?
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum