Skip to main content

EasyApache4 and mod Security

jimlongo
The

Comments

5 comments

Date Votes
  • cPanelMichael
    Can you explain exactly what "manually" refers to.

    Hello :) This means that once you convert to EasyApache 4, you have to open the following file:
    /etc/apache2/conf.d/modsec2.user.conf
    Any include directories that you had previously added will be commented out (The line starts with a # symbol). You have to manually edit the file and remove that symbol for each include after verifying the path is correct. Thank you.
    0
  • jimlongo
    My file is now empty except for the whitelist.conf include. But there is a user.conf.rpmsave file that is the old file.
    SecRequestBodyAccess On #SecAuditLogType Concurrent SecAuditLogType Serial SecResponseBodyAccess On SecResponseBodyMimeType (null) text/html text/plain text/xml SecResponseBodyLimit 2621440 SecAuditLogRelevantStatus "^(?:5|4(?!04))" SecServerSignature Apache SecUploadDir /var/asl/data/suspicious SecUploadKeepFiles Off SecAuditLogParts ABIFHZ SecArgumentSeparator "&" SecCookieFormat 0 SecRequestBodyInMemoryLimit 131072 SecDataDir /var/asl/data/msa SecTmpDir /tmp SecAuditLogStorageDir /var/asl/data/audit SecResponseBodyLimitAction ProcessPartial # Include /usr/local/apache/conf/modsec_rules/10_asl_antimalware.conf # Include /usr/local/apache/conf/modsec_rules/10_asl_rules.conf # Include /usr/local/apache/conf/modsec_rules/20_asl_useragents.conf # Include /usr/local/apache/conf/modsec_rules/30_asl_antispam.conf # Include /usr/local/apache/conf/modsec_rules/50_asl_rootkits.conf # Include /usr/local/apache/conf/modsec_rules/60_asl_recons.conf # Include /usr/local/apache/conf/modsec_rules/99_asl_jitp.conf # Include /usr/local/apache/conf/modsec2.whitelist.conf
    Should I uncomment all the includes, and copy all of that to the new user.conf file?
    0
  • cPanelMichael
    You should not have to make any adjustments before converting to EasyApache 4 because your one include line is already commented out. The Mod Security tool options in Web Host Manager are still available when using EasyApache 4 so you can manage your rulesets. Thank you.
    0
  • jimlongo
    Do you mean the ModSecurity Vendors panel?
    0
  • cPanelMichael
    The "WHM >> Security Center >> Mod Security Tools" option allows you to edit your rules, however the following options are available in Web Host Manager with EasyApache 4 just as they are with EasyApache 3:
    0

Please sign in to leave a comment.

Didn't find what you were looking for?

New post