The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Mod Security Issues Logging into WP-LOGIN

Discussion in 'Security' started by coolgeee, Feb 14, 2015.

  1. coolgeee

    coolgeee Registered

    Joined:
    Feb 14, 2015
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hi Everyone, today I tried to login to one of my websites and it caused immediate panic! I could not login to the wp-login on that site...I reset the password, and then tried again. When I couldn't I went into panic mode (in the past sites have been hijacked).

    So I logged into cpanel, started checking my access logs, and started analyzing my files, database users, etc to see if anything looked out of the ordinary, and it did not.

    Then on the bottom of my cpanel dashboard I noticed that their was this new green icon called Mod Security!

    Long story short I disabled it for the domain name, and then I was finally able to login to my wordpress website!

    Talk about a scare.

    I am not familiar with Mod Security but now I will begin researching it much further.

    I am just wondering if anyone would know why Mod Security would block me from logging into ANY of the websites on this server? I have about 100 websites running on this particular server and all had the same issue.

    This is my first post but I am really looking forward to being part of this community and hopefully learning from all you cpanel pros!
     
  2. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    942
    Likes Received:
    57
    Trophy Points:
    28
    cPanel Access Level:
    DataCenter Provider
    ModSecurity in general is a very good thing; almost necessary in this age of constant CMS attacks.

    Anyway, sometimes some rules do cause issues; you need to check the apache error log or in the WHM modsecurity tool for the hits list to see what rule ID(s) may be causing you problems. Assuming you are using 11.46 or 11.48 you should be able to whitelist the troublesome rule IDs right from WHM.
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    676
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page