ModSec AtomiCorp

oozetime · Aug 23, 2014

Hello,

Good evening, I'm sorry to come here to ask a question that has probably already been answered, but I'm having trouble finding a similar response.

I would like to know which rules I must disable (applying the whitelist) my ModSec. Since this is a shared hosting.

talk2prakash · Aug 24, 2014

Hi,

For your information, mod security blocks are recorded in your apache error log. On a closer look on this, you find a the exact rule that is blocking your request.

Check with :

Modsecurity : /usr/local/apache/logs/modsec_audit.log
Apache error Log : /usr/local/apache/logs/error_log

oozetime · Aug 24, 2014

I need something to enable logs to be generated? My files tend to be empty ...

cPanelMichael · Aug 25, 2014

oozetime said:
I would like to know which rules I must disable (applying the whitelist) my ModSec. Since this is a shared hosting.

Hello

Actually, there are no specific rules that you must absolutely disable. Instead, it's typically a better idea to implement the rules and review /usr/local/apache/logs/modsec_audit.log to see which rules you might need to disable. Is there a specific issue you are facing that lead to you opening this thread, or is it just a general question?

Thank you.

oozetime · Aug 25, 2014

Hello,

I host many forums, wordpress websites, joomla ...

And usually my customers return me 503 error

cPanelMichael · Aug 25, 2014

It's important to review a log file such as /usr/local/apache/logs/error_log when you notice the "503" code in the browser to get a better understanding of why that error code was produced. The log file will indicate which specific Mod_Security rule triggered the error, so that you can then disable it if you choose to.

Thank you.

oozetime · Aug 25, 2014

I activated the debug looks so much error...

cPanelMichael · Aug 25, 2014

Atomicorp references that warning message here on their documentation:

https://www.atomicorp.com/wiki/inde...oubleshooting#Failed_to_create_subdirectories

Have you posted to their support forums for help implementing their rules? It's found here:

https://www.atomicorp.com/forum/viewforum.php?f=15

Thank you.

Thread starter	Similar threads	Forum	Replies	Date
A	ModSecurity to disable for Wordpress	Security	8	Aug 28, 2023
K	Modsecurity and cpanel questions	Security	3	Aug 19, 2023
C	OWASP ModSecurity Core Rule Set 3.3.5 [Security Fix]	Security	1	Jul 25, 2023
D	using ModSec 3 with nginx rev proxy	Security	5	May 10, 2023
S	Atomicorp no longer provides a free delayed version of its ModSecurity Rule set	Security	29	Oct 23, 2013

Search

Search

ModSec AtomiCorp

oozetime

Member

talk2prakash

Member

oozetime

Member

cPanelMichael

Administrator

oozetime

Member

cPanelMichael

Administrator

oozetime

Member

cPanelMichael

Administrator