We have installed Comodo CWAF CPanel Plugin. When ModSecurity is set to serial with the plugin, the ModSecurity Hits List records the hits. When ModSecurity is set to concurrent (best setting), the ModSecurity Hits List records no hits. The log file is at /usr/local/apache/logs/modsec_audit.log and with concurrent set, additional data is written to the directory /usr/local/apache/logs/nobody. My understanding is that CPanel does support concurrent ModSecurity. How can Hits List function correctly with concurrent set?