ModSecurity features in cPanel 11.46

These forums are not for questions about ModSecurity, just the cmc script itself
Post Reply
aegis
Junior Member
Posts: 12
Joined: 31 Jan 2010, 00:13

ModSecurity features in cPanel 11.46

Post by aegis »

11.46 adds ModSecurity features to WHM/cPanel which on the face of it seems like a great thing but is it?

Does it conflict with ConfigServer's ModSecurity Control?
ForumAdmin
Moderator
Posts: 1523
Joined: 01 Oct 2008, 09:24

Re: ModSecurity features in cPanel 11.46

Post by ForumAdmin »

It should not conflict at all.
Linuc
Junior Member
Posts: 11
Joined: 06 Oct 2015, 17:54

Re: ModSecurity features in cPanel 11.46

Post by Linuc »

We make use of the ModSecurity feature and OWASP provided by cPanel.

We also make use of the ConfigServer ModSecurity Control.

The problem is that whitelisting is not working.

You can select an account -> modify user whitelist

And then add a rule from ModSecurity OWASP, like 970901

It will not ignore the rule and LFD will still block the user.
ethical
Junior Member
Posts: 10
Joined: 12 Nov 2010, 01:59

Re: ModSecurity features in cPanel 11.46

Post by ethical »

Appear to be having the same issue... 240335 comodo WAF xml rule is not whitelisting properly. latest versions of everything

any ideas?
Post Reply