Modsecurity:

sreeninair

• June 13, 2014 21:46

Hello Guys, I have setup a new server. Please let me know the exact steps to install modsecurity with required rules. Thanks Sreenie

• 

  24x7server

  • June 14, 2014 21:00

  Hello, You can install mod_sec on your server through Easyapache scripts. [url=http://docs.cpanel.net/twiki/bin/view/AllDocumentation/EasyapacheModsecurity]EasyApache mod_security Module

  0
• 

  markb14391

  • June 14, 2014 23:32

  Does the default installation through EasyApache include a robust set of rules?

  0
• 

  quizknows

  • June 15, 2014 01:09

  Currently the EasyApache install does not install any rules aside from multi-part request enforcement. Atomicorp used to have a good free rule set but it's not available any more. They do have a paid option. Trustwave also has a nice paid rule set, but it is pricy. If you're hosting a lot of common CMS software it's well worth it though. The OWASP CRS (core rule set) is free, but can carry a very high false-positive rate until you finish whitelisting or commenting out rules that do not work for you. Be prepared to spend some time getting it configured correctly.

  0
• 

  cPanelMichael

  • June 16, 2014 12:49

  Hello :) I just wanted to note the updated document is available at: EasyApache - Mod_Security Thank you.

  0

Please sign in to leave a comment.