Symptoms
You are trying to enable ModSecurity OWASP in ModSecurity Vendors via WHM, but you receive the following error:
Could not open configuration file /etc/apache2/conf.d/modsec_vendor_configs/OWASP3/crs-setup.conf: No such file or directory
Description
We are currently investigating what is causing this issue.
For reference, the case number is CPANEL-35328. Follow this article to receive an email notification when a solution is published in the product.
Workaround
Verify which Easyapache repositories are enabled on your server.
# yum repolist enabled | grep -i easyapache
EA4/7/x86_64 EA4 ( EasyApache 4 ) 4,038+737
cl-ea4/7/x86_64 CloudLinux 7 EasyApache4 10,948
If you have both repositories enabled you can install the ModSecurity ruleset with the below command then enable it in WHM:
yum install ea-modsec2-rules-owasp-crs
If you only have the CloudLinux 7 EasyApache4 repository enabled, you need to wait until CloudLinux publishes their version of the package.
ModSecurity rules as the ea-modsec2-rules-owasp-crs package are not yet available within the CloudLinux 7 EasyApache4 repo. The package should be available soon. The tracking number for this issue is UPS-297.