mod_security2 rules

**mikeyman** · 02-01-2008 11:49 AM

On another post I saw that cpaneltodd had recommended that a member use the modsec2 rules listed below. I was wondering if those rules would interfere with cpanel or any of its components? Also if the rules below are loaded, would you disable the default rules that cpanel installs and only use the 2 below? Thanks!

http://www.gotroot.com/downloads/ftp.../rootkits.conf
http://www.gotroot.com/downloads/ftp...he2/rules.conf

**mikeyman** · 02-02-2008 09:01 PM

Also what about:

jitp.conf
recons.conf
useragents.conf
proxy.conf

Will any of these or the ones above break cpanel's functionality?

**LinuxStandard** · 02-02-2008 10:42 PM

cPanel should have access via the 127.0.0.1 address and should be allowed via the rule:

SecRule REMOTE_ADDR "^127.0.0.1$" nolog,allow

in the modsec2.conf file included with the ModSec.pm.tar.gz component of easyapache3.

**mikeyman** · 02-06-2008 11:28 AM

Is it safe to use these rules without worry about breaking anything in cpanel?

LinkBack

Thread Tools

mod_security2 rules

Is the order of application of forwarding rules and fitering rules documented?

How to disable mod_security2 for one folder

Rules for mod_security2

HOW: Create my own mod_security2 rules?

mod_security2 EA3