The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

EasyApache ModSecurity error

Discussion in 'EasyApache' started by DJzz, Feb 10, 2013.

  1. DJzz

    DJzz Registered

    Joined:
    Feb 10, 2013
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hi,

    I've never had problems with EasyApache before but I updated PHP to 5.3.21 and EasyApache failed with the following error:

    I'm using GotRoot modsec-2.7-free-latest.tar.bz2 dated Feb 09 2013 12:31:54.

    If I comment out

    in modsec2.user.conf then EasyApache builds.

    Has anyone experienced the same problem?

    Thanks
     
  2. PlotHost

    PlotHost Well-Known Member

    Joined:
    Apr 29, 2011
    Messages:
    253
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    US
    cPanel Access Level:
    Root Administrator
    Twitter:
    The free GotRoot rules are delayed (60-90 days I think). I suppose something changed recently ..
     
  3. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,447
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
  4. DJzz

    DJzz Registered

    Joined:
    Feb 10, 2013
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Yep thanks, that explains the problem.

    Do you know if GotRoot have added rule IDs and fixed syntax errors in the realtime rules or if it's something we have to add ourselves?
     
  5. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,447
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    I updated EasyApache, and then updated my gotroot rules.
     
  6. cPanelJamyn

    cPanelJamyn Social Engineer
    Staff Member

    Joined:
    Jan 29, 2009
    Messages:
    105
    Likes Received:
    2
    Trophy Points:
    0
    Mod Security has been updated a few times over the last 6 months, and they've made config value changes in 2.7.0 and 2.7.1 which broke existing rulesets. We attempt to "auto-convert" older rulesets on the fly, but as you know it's not a perfect process.

    I think the changes in EasyApache 3.18.0 and 3.18.1 addressed the issue you were facing here. One of the Atomic rules was a chained rule with comments in-between the first and second part of the chain. The parser mis-understood where the chain started/stopped at that stage.
     
Loading...

Share This Page