Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

mod_security Ruleset comparsions

Discussion in 'Security' started by mobcdi, Jun 14, 2012.

  1. mobcdi

    mobcdi Well-Known Member

    Jul 13, 2009
    Likes Received:
    Trophy Points:
    What are cPanel admins opinion of the various rulesets available for mod_security and how well they work on cPanel hostings 11.32 and up.

    Which rulesets offer better integration into cPanel
    Is it possible to automatically have the latest rulesets applied
    Are there an caveat for using particular rule sets?
    besides gotroot and OWASP ModSecurity Core Rule Set are there other rule sets users would recommend?
  2. rligg

    rligg Well-Known Member

    Sep 16, 2003
    Likes Received:
    Trophy Points:
    I would like someone to chime in as well. The default rules are not enough.
  3. mtindor

    mtindor Well-Known Member

    Sep 14, 2004
    Likes Received:
    Trophy Points:
    inside a catfish
    cPanel Access Level:
    Root Administrator
    Default rules are definitely not enough. I would recommend the AtomiCorp: Security for Everyone - Atomic Security rules -- specifically the ones you pay for. But if you must, the 90-day delayed ones are good too.

    An ASL-Lite subscription is good -- but, I might recommend that you first set things up manually [per the instructions in their wiki] and get used to dealing with the rules before you use their automated installer.

    The ruleset is the only one I'd recommend for cpanel servers. If you follow the directions [and don't activate every ruleset].

    Just keep in mind that with any ruleset meant to really protect your server, you are going to have some maintenance chores -- manually adding exceptions for certain users' websites, etc. There will be "false positives."

    Just my $0.002. I can't instruct you on the how-tos of installing / updating. All of that information is contained in the wiki. Read all of the documentation thoroughly before you do anything.

    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice