mod security / cpanel bugs


Blind Can See

After cpanel's bug (1711 open bugs as of now, sad) with its nightly update erasing custom rules, I am trying to find the best rules for the below environment

centos 4x
shared / resellers
same server services, default (mail, web, database, etc)

Gotroot is broken
(shows 503's every time I click a link).

Anyone, what would one suggest to use for mod security rules w/o slowing apache down dramatically? Please tip me on this

[email protected] [~]# service httpd restart
/etc/init.d/httpd restart: configuration broken, ignoring restart
/etc/init.d/httpd restart: (run 'apachectl configtest' for details)

[email protected] [~]# /usr/local/apache/bin/apachectl configtest
Syntax error on line 1193 of /usr/local/apache/conf/httpd.conf:
Invalid command 'SSLEnable', perhaps mis-spelled or defined by a module not included in the server configuration

I cannot compile via whm apache update (shows page not found when I click "start build"). I did upcp -force on release, stable and did not fix it. I did fixeverything, did not fix that either.

Anyone know how to correct both issues? I used easyapache and did compile with ssl module enabled, but the above error still persists.

I also cannot use /scripts/installzendopt (but wget works on anything else). Services are up otherwise. Even if I disable APF, the script still doesn't work.

Blind Can See


This was missing from each SSL virtualhost

<IfDefine SSL>

and close the virtual host with


Restart apache
Last edited by a moderator: