mod Securty whitelist not work

speckados

Well-Known Member
Hi.

In one server /usr/local/apache/conf/modsec2.whitelist.conf not work properly.

Code:
cat /usr/local/apache/conf/modsec2.whitelist.conf
# ConfigServer ModSecurity whitelist file
<LocationMatch .*>
        SecRuleRemoveById 1234123429
</LocationMatch>
But not work.

Of course on /usr/local/apache/conf/modsec2.conf there a Include /usr/local/apache/conf/modsec2.whitelist.conf

Also try put deactivate rule on /usr/local/apache/conf/userdata/std/2/<usercpanel>/modsec.conf

But after restart apache, if rule catch by mod_security, error on url.

Desesperate
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
Hello :)

It looks like you are using the ConfigServer Mod_Security Control plugin. Are you editing/disabling the rules through the interface it offers? If so, and if it's not working as intended, you may want to contact their support team directly to report this issue.

Thank you.