Morning folks... Not necessarily a cPanel issue, but UPCP failed last night as follows:
...and visiting the two destinations in a web browser produces:
A quick trip to ModSecurity Rules | Best Free Web Application Firewall from Comodo and hitting the Login link presents the same "We're sorry, but something went wrong" error.
Is anyone aware of Comodo discontinuing their free ruleset?
They released a new Client agent yesterday, not that that should have any impact on cPanel users that I'm aware of... but Client Agent Updates - Free Modsecurity rules - Comodo Web Application Firewall | Page 12 implies the endpoint now requires authentication (when it's up).
Others are noticing the same issue: waf.comodo.com 500 error - Free Modsecurity rules - Comodo Web Application Firewall
The obvious solution is to turn off Comodo rules and just use the OWasp rulesets, however, there's an undocumented reason why we didn't in the first place (wish I could remember what it was!)
Code:
Maintenance ended; however, it did not exit cleanly (256). The following events were logged: “scripts/modsec_vendor”. Review the update logs to determine why the update failed.
[2018-10-09 23:44:05 +0100] E [/usr/local/cpanel/scripts/modsec_vendor] The “/usr/local/cpanel/scripts/modsec_vendor update --auto” command (process 3101) reported error number 1 when it ended.
Manually running /usr/local/cpanel/scripts/modsec_vendor update --auto results in:
[code]warn [modsec_vendor] The system could not add the vendor: The system could not download the file “https://waf.comodo.com/api/cpanel_apache_vendor”: curl: (22) The requested URL returned error: 500 Internal Server Error
info [modsec_vendor] Restored modsec_cpanel_conf_datastore backup
warn [modsec_vendor] The system failed to update the vendor from the URL “https://waf.comodo.com/doc/meta_comodo_apache.yaml”: The system could not download the file “https://waf.comodo.com/api/cpanel_apache_vendor”: curl: (22) The requested URL returned error: 500 Internal Server Error
Code:
"We're sorry, but something went wrong."
Is anyone aware of Comodo discontinuing their free ruleset?
They released a new Client agent yesterday, not that that should have any impact on cPanel users that I'm aware of... but Client Agent Updates - Free Modsecurity rules - Comodo Web Application Firewall | Page 12 implies the endpoint now requires authentication (when it's up).
Others are noticing the same issue: waf.comodo.com 500 error - Free Modsecurity rules - Comodo Web Application Firewall
The obvious solution is to turn off Comodo rules and just use the OWasp rulesets, however, there's an undocumented reason why we didn't in the first place (wish I could remember what it was!)
Last edited by a moderator: