Suddenly (I assume due to to cpanel automatic update), the complete mod_security configuration is gone and almost all related files are missing.
- When trying to save the configuration (Home »Security Center »ModSecurity™ Configuration »Configure Global Directives)
I get the message here:
Error: The system could not save your ModSecurity™ settings because of the following error: The system could not save some of the settings.
- The vendor management is corrupted as well (Home »Security Center »ModSecurity™ Vendors »Manage Vendors)https://secure.managed-hosts.com:2087/cpsess2386655824/scripts2/manage_mod_security_vendors/vendors
It shows OWASP "This vendor is not installed", when clicking on the "install" button, the only thing that happens is an error message:
Error: The system experienced the following error when it attempted to install the “OWASP ModSecurity Core Rule Set” vendor: API failure: The system could not validate the new Apache configuration because httpd exited with a nonzero value. Apache produced the following error: httpd: Syntax error on line 219 of /etc/apache2/conf/httpd.conf: Syntax error on line 32mo of /etc/apache2/conf.d/modsec2.conf: Could not open configuration file /etc/apache2/conf.d/modsec/modsec2.user.conf: No such file or directory
Line 219 in httpd.conf:
Line 32 in modec2.conf:
File /etc/apache2/conf.d/modsec/modsec2.user.conf exists but has a zero byte size