Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

EasyApache ModSecurity error

Discussion in 'EasyApache' started by DJzz, Feb 10, 2013.

  1. DJzz

    DJzz Registered

    Joined:
    Feb 10, 2013
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hi,

    I've never had problems with EasyApache before but I updated PHP to 5.3.21 and EasyApache failed with the following error:

    I'm using GotRoot modsec-2.7-free-latest.tar.bz2 dated Feb 09 2013 12:31:54.

    If I comment out

    in modsec2.user.conf then EasyApache builds.

    Has anyone experienced the same problem?

    Thanks
     
  2. PlotHost

    PlotHost Well-Known Member

    Joined:
    Apr 29, 2011
    Messages:
    255
    Likes Received:
    2
    Trophy Points:
    68
    Location:
    Romania
    cPanel Access Level:
    Root Administrator
    Twitter:
    The free GotRoot rules are delayed (60-90 days I think). I suppose something changed recently ..
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,440
    Likes Received:
    416
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. DJzz

    DJzz Registered

    Joined:
    Feb 10, 2013
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Yep thanks, that explains the problem.

    Do you know if GotRoot have added rule IDs and fixed syntax errors in the realtime rules or if it's something we have to add ourselves?
     
  5. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,440
    Likes Received:
    416
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    I updated EasyApache, and then updated my gotroot rules.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. cPanelJamyn

    cPanelJamyn Social Engineer
    Staff Member

    Joined:
    Jan 29, 2009
    Messages:
    105
    Likes Received:
    2
    Trophy Points:
    143
    Mod Security has been updated a few times over the last 6 months, and they've made config value changes in 2.7.0 and 2.7.1 which broke existing rulesets. We attempt to "auto-convert" older rulesets on the fly, but as you know it's not a perfect process.

    I think the changes in EasyApache 3.18.0 and 3.18.1 addressed the issue you were facing here. One of the Atomic rules was a chained rule with comments in-between the first and second part of the chain. The parser mis-understood where the chain started/stopped at that stage.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice