Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Any user can turn off mod_security!!!!!!

Discussion in 'cPanel Developers' started by rs-freddo, Feb 6, 2006.

  1. rs-freddo

    rs-freddo Well-Known Member

    Joined:
    May 13, 2003
    Messages:
    832
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Australia
    cPanel Access Level:
    Root Administrator
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. verdon

    verdon Well-Known Member

    Joined:
    Nov 1, 2003
    Messages:
    868
    Likes Received:
    3
    Trophy Points:
    168
    Location:
    Northern Ontario, Canada
    cPanel Access Level:
    Root Administrator
    Not if you install it manually :D
     
  3. qwerty

    qwerty Well-Known Member

    Joined:
    Jan 21, 2003
    Messages:
    214
    Likes Received:
    2
    Trophy Points:
    168
    modsec can be turned off via .htaccess regardless of whether you've installed modsec through WHM or manually
     
  4. rs-freddo

    rs-freddo Well-Known Member

    Joined:
    May 13, 2003
    Messages:
    832
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Australia
    cPanel Access Level:
    Root Administrator
    If it's compiled properly it can't be turned off.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. anup123

    anup123 Well-Known Member

    Joined:
    Mar 29, 2004
    Messages:
    890
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    This Planet
    I have voted in good "hope".
    However, wouldn't just running following (and disabling aut update to this module in WHM) serve the purpose

    cd /usr/src/modsecurity-apache-1.9.1/apache1

    /usr/local/apache/bin/apxs -ci -D DISABLE_HTACCESS_CONFIG mod_security.c

    That should serve the purpose?

    I know it's just a matter of adding -D DISABLE_HTACCESS_CONFIG from cpanel to

    /var/cpanel/apachemod/modsecurity.apache

    but till then would/shouldn't the above be sufficient?

    TIA
    Anup
     
  6. anup123

    anup123 Well-Known Member

    Joined:
    Mar 29, 2004
    Messages:
    890
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    This Planet
    cd /usr/src/modsecurity-apache-1.9.1/apache1
    /usr/local/apache/bin/apxs -ci -D DISABLE_HTACCESS_CONFIG mod_security.c

    restart httpd

    don't forget to Uncheck the checkbox "Install and Keep Updated" in WHM > Add on Modules for mod_security. Tried disabling mod_security in htaccess and got ISE so i presume that it works.

    Anup
     
  7. mtindor

    mtindor Well-Known Member

    Joined:
    Sep 14, 2004
    Messages:
    1,342
    Likes Received:
    58
    Trophy Points:
    178
    Location:
    inside a catfish
    cPanel Access Level:
    Root Administrator
    I know this is an old thread. however, it would still be great if cPanel would include an option to compile mod_security with DISABLE_HTACCESS_CONFIG.

    Mike
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice