The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

ModSec AtomiCorp

Discussion in 'Security' started by oozetime, Aug 23, 2014.

  1. oozetime

    oozetime Member

    Joined:
    Aug 22, 2014
    Messages:
    22
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hello,

    Good evening, I'm sorry to come here to ask a question that has probably already been answered, but I'm having trouble finding a similar response.

    I would like to know which rules I must disable (applying the whitelist) my ModSec. Since this is a shared hosting.
     
  2. talk2prakash

    talk2prakash Member

    Joined:
    Sep 29, 2013
    Messages:
    14
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hi,

    For your information, mod security blocks are recorded in your apache error log. On a closer look on this, you find a the exact rule that is blocking your request.

    Check with :

    Modsecurity : /usr/local/apache/logs/modsec_audit.log
    Apache error Log : /usr/local/apache/logs/error_log
     
  3. oozetime

    oozetime Member

    Joined:
    Aug 22, 2014
    Messages:
    22
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I need something to enable logs to be generated? My files tend to be empty ...
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,811
    Likes Received:
    671
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    Actually, there are no specific rules that you must absolutely disable. Instead, it's typically a better idea to implement the rules and review /usr/local/apache/logs/modsec_audit.log to see which rules you might need to disable. Is there a specific issue you are facing that lead to you opening this thread, or is it just a general question?

    Thank you.
     
  5. oozetime

    oozetime Member

    Joined:
    Aug 22, 2014
    Messages:
    22
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hello,

    I host many forums, wordpress websites, joomla ...

    And usually my customers return me 503 error
     
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,811
    Likes Received:
    671
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    It's important to review a log file such as /usr/local/apache/logs/error_log when you notice the "503" code in the browser to get a better understanding of why that error code was produced. The log file will indicate which specific Mod_Security rule triggered the error, so that you can then disable it if you choose to.

    Thank you.
     
  7. oozetime

    oozetime Member

    Joined:
    Aug 22, 2014
    Messages:
    22
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    error.png

    I activated the debug looks so much error...
     
  8. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,811
    Likes Received:
    671
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page