mod_security2 rules

mikeyman · Feb 1, 2008

On another post I saw that cpaneltodd had recommended that a member use the modsec2 rules listed below. I was wondering if those rules would interfere with cpanel or any of its components? Also if the rules below are loaded, would you disable the default rules that cpanel installs and only use the 2 below? Thanks!

http://www.gotroot.com/downloads/ftp/mod_security/2.0/apache2/rootkits.conf
http://www.gotroot.com/downloads/ftp/mod_security/2.0/apache2/rules.conf

mikeyman · Feb 2, 2008

Also what about:

jitp.conf
recons.conf
useragents.conf
proxy.conf

Will any of these or the ones above break cpanel's functionality?

LinuxStandard · Feb 2, 2008

cPanel should have access via the 127.0.0.1 address and should be allowed via the rule:

SecRule REMOTE_ADDR "^127.0.0.1$" nolog,allow

in the modsec2.conf file included with the ModSec.pm.tar.gz component of easyapache3.

mikeyman · Feb 6, 2008

Is it safe to use these rules without worry about breaking anything in cpanel?

Thread starter	Similar threads	Forum	Replies	Date
F	SOLVED mod_security2 being intermittent	Security	2	Apr 29, 2021
M	Help Configuring Rules For Mod_Security2 ?	Security	4	Jun 21, 2013
D	/etc/httpd/ modules/ mod_security2.so load ap_get_server_banner undefined	Security	5	Aug 30, 2011
	HOW: Create my own mod_security2 rules?	Security	4	Jan 20, 2008
	Rules for mod_security2	Security	20	Sep 14, 2007

Search

Search

mod_security2 rules

mikeyman

Member

mikeyman

Member

LinuxStandard

Active Member

mikeyman

Member