ModSecurity features in cPanel 11.46

These forums are not for questions about ModSecurity, just the cmc script itself
4 posts Page 1 of 1
Junior Member
Posts: 9
Joined: 31 Jan 2010, 00:13

11.46 adds ModSecurity features to WHM/cPanel which on the face of it seems like a great thing but is it?

Does it conflict with ConfigServer's ModSecurity Control?
Posts: 1375
Joined: 01 Oct 2008, 09:24

It should not conflict at all.
Junior Member
Posts: 9
Joined: 06 Oct 2015, 17:54

We make use of the ModSecurity feature and OWASP provided by cPanel.

We also make use of the ConfigServer ModSecurity Control.

The problem is that whitelisting is not working.

You can select an account -> modify user whitelist

And then add a rule from ModSecurity OWASP, like 970901

It will not ignore the rule and LFD will still block the user.
Junior Member
Posts: 10
Joined: 12 Nov 2010, 01:59

Appear to be having the same issue... 240335 comodo WAF xml rule is not whitelisting properly. latest versions of everything

any ideas?
4 posts Page 1 of 1