oozetime

Member
Aug 22, 2014
22
0
1
cPanel Access Level
Root Administrator
Hello,

Good evening, I'm sorry to come here to ask a question that has probably already been answered, but I'm having trouble finding a similar response.

I would like to know which rules I must disable (applying the whitelist) my ModSec. Since this is a shared hosting.
 

talk2prakash

Member
Sep 29, 2013
14
0
1
cPanel Access Level
Root Administrator
Hi,

For your information, mod security blocks are recorded in your apache error log. On a closer look on this, you find a the exact rule that is blocking your request.

Check with :

Modsecurity : /usr/local/apache/logs/modsec_audit.log
Apache error Log : /usr/local/apache/logs/error_log
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,203
363
I would like to know which rules I must disable (applying the whitelist) my ModSec. Since this is a shared hosting.
Hello :)

Actually, there are no specific rules that you must absolutely disable. Instead, it's typically a better idea to implement the rules and review /usr/local/apache/logs/modsec_audit.log to see which rules you might need to disable. Is there a specific issue you are facing that lead to you opening this thread, or is it just a general question?

Thank you.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,203
363
It's important to review a log file such as /usr/local/apache/logs/error_log when you notice the "503" code in the browser to get a better understanding of why that error code was produced. The log file will indicate which specific Mod_Security rule triggered the error, so that you can then disable it if you choose to.

Thank you.