The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Mod Security WHM Interface not updating

Discussion in 'Security' started by jimlongo, Nov 14, 2013.

  1. jimlongo

    jimlongo Well-Known Member

    Joined:
    Mar 20, 2008
    Messages:
    153
    Likes Received:
    3
    Trophy Points:
    68
    Hi, the Mod Security interface has not updated sine I started using the paid Atomic Rules.
    I see activity in /usr/local/apache/logs/modsec_audit.log but nothing in the WHM interface.

    no corresponding errors in /usr/local/cpanel/logs/error_log
     
    #1 jimlongo, Nov 14, 2013
  2. quietFinn

    quietFinn Well-Known Member

    Joined:
    Feb 4, 2006
    Messages:
    998
    Likes Received:
    10
    Trophy Points:
    168
    Location:
    Finland
    cPanel Access Level:
    Root Administrator
    Do you have file:
    /etc/cron.hourly/modsecparse.pl
     
    #2 quietFinn, Nov 14, 2013
  3. jimlongo

    jimlongo Well-Known Member

    Joined:
    Mar 20, 2008
    Messages:
    153
    Likes Received:
    3
    Trophy Points:
    68
    Yes I have that file.

    I am on cpanel 11.40.19
     
    #3 jimlongo, Nov 14, 2013
  4. Sys Admin

    Sys Admin Well-Known Member

    Joined:
    Apr 29, 2007
    Messages:
    67
    Likes Received:
    0
    Trophy Points:
    156
    cPanel Access Level:
    Root Administrator
    Did you try executing it via ssh by running: /etc/cron.hourly/modsecparse.pl ?
     
    #4 Sys Admin, Nov 14, 2013
  5. jimlongo

    jimlongo Well-Known Member

    Joined:
    Mar 20, 2008
    Messages:
    153
    Likes Received:
    3
    Trophy Points:
    68
    I've done that, and all that happens is it returns without giving any feedback in the terminal.
    After doing that i checked the WHM interface and there is no updated activity.
     
    #5 jimlongo, Nov 14, 2013
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    35,741
    Likes Received:
    1,143
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Please open a ticket using the link in my signature so we can take a closer look. You can post the ticket number here so we can update this thread with the outcome.

    Thank you.
     
    #6 cPanelMichael, Nov 15, 2013
  7. jimlongo

    jimlongo Well-Known Member

    Joined:
    Mar 20, 2008
    Messages:
    153
    Likes Received:
    3
    Trophy Points:
    68
    Support ID 4396573
     
    #7 jimlongo, Nov 15, 2013
  8. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    35,741
    Likes Received:
    1,143
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    To update, it looks like this was the result of the installation of CSF/LFD. The resolution to this issue was resolved by following the instructions from:

    Mod_Sec Log Blank

    Thank you.
     
    #8 cPanelMichael, Nov 20, 2013
  9. jimlongo

    jimlongo Well-Known Member

    Joined:
    Mar 20, 2008
    Messages:
    153
    Likes Received:
    3
    Trophy Points:
    68
    Yes changing the SecAuditLogType fixes this issue,
    However according to the Atomic people . . .

    SecAuditLogType Serial is not as good in terms of performance in comparison to
    SecAuditLogType Concurrent

    Anyone can comment on this?
     
    #9 jimlongo, Nov 21, 2013
(You must log in or sign up to post here.)
Loading...
Similar Threads - Security Interface updating
  1. stevenvsi

    Unable to disable mod_security per domain in user interface

    stevenvsi, Apr 11, 2017, in forum: Security
    Replies:
    9
    Views:
    261
    cPanelMichael
    Apr 11, 2017
  2. Spork Schivago

    ModSec shows security scanner scanning 127.0.0.1

    Spork Schivago, Jun 21, 2017, in forum: Security
    Replies:
    14
    Views:
    180
    Spork Schivago
    Jun 26, 2017 at 11:37 AM
  3. Rockforduk

    Modsecurity & Comodo WAF

    Rockforduk, Jun 16, 2017, in forum: Security
    Replies:
    4
    Views:
    120
    Rockforduk
    Jun 25, 2017 at 3:10 AM
  4. Dansih

    warning email () has been disabled for security reasons

    Dansih, Jun 13, 2017, in forum: E-mail Discussions
    Replies:
    3
    Views:
    71
    webhostuk
    Jun 15, 2017
  5. Keith007

    EA4 Mod security Fails

    Keith007, Jun 12, 2017, in forum: EasyApache
    Replies:
    3
    Views:
    68
    cPanelMichael
    Jun 13, 2017

Share This Page