Mod_sec Rules

kjlord · Jul 23, 2013

Hello,

Please give me mod_sec rules details i.e like how to create our own global rules to disable/restricting few files and folders access.
If there is any other way to do this, suppose we need to disable folder like, hacked./ or any word start/ends with hacked should be disabled or it shall not be access via http.

Regard

24x7server · Jul 23, 2013

You can disable the file access through your web server using the mod_sec. Please check the following post and block your file in mod_sec

http://forums.cpanel.net/f185/prevent-block-specific-files-uploading-server-344911.html#post1387621

cPanelMichael · Jul 24, 2013

Hello

You can browse to the following option if you are seeking a visual interface to add/modify rules:

"WHM Main >> Plugins >> Mod Security"

Thank you.

quizknows · Jul 24, 2013

If you want to make your own rules, I recommend the reference manual:

https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual

Something like this would deny web access to anything with the word 'hacked' after the domain name. This is an overly broad rule and I don't recommend its use, only as an example:

SecRule REQUEST_URI "hacked" "t:lowercase,id:12345"

kjlord · Jul 24, 2013

Hello,

Thanks..

Thread starter	Similar threads	Forum	Replies	Date
V	Centos 8 - mod_security v3 not working custom rules	Security	6	Nov 7, 2020
E	Let customers view and whitelist mod_security rules?	Security	2	Aug 26, 2017
	Mod_security rules to prevent spam registrations and comments on wordpress sites	Security	12	Feb 7, 2017
B	Older mod_security ruleset still active	Security	3	May 3, 2016
S	Custom mod_security rules disappear	Security	4	Apr 23, 2015

Search

Search

Mod_sec Rules

kjlord

Member

24x7server

Well-Known Member

cPanelMichael

Administrator

quizknows

Well-Known Member

kjlord

Member