Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

modsecurity question

Discussion in 'Security' started by durangod, Jul 28, 2014.

  1. durangod

    durangod Well-Known Member

    Joined:
    May 12, 2012
    Messages:
    411
    Likes Received:
    22
    Trophy Points:
    68
    cPanel Access Level:
    Root Administrator
    I was reading this

    EasyApache mod_security Module

    and i can see where the OWASP table is reserved.


    I downloaded the new version owasp from here 2.2.9-5

    https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project


    But then i thought, does a new install of WHM and Cpanel come with the rules already or do i need to install them. Its not real clear and i dont want to install that if the owasp rules are already there.

    There is nothing on the mod security page so im assuming they are not but i wanted to ask.

    Do i need to install that owasp version according to thier install file directions? Or it looks like i can just copy the rules right into the text area? Or choose default configuration? How do i apply the install to the ranges reserved?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 durangod, Jul 28, 2014
    Last edited: Jul 28, 2014
  2. Shavaun

    Shavaun Well-Known Member

    Joined:
    Aug 15, 2013
    Messages:
    106
    Likes Received:
    0
    Trophy Points:
    91
    cPanel Access Level:
    Root Administrator
    cPanel & WHM does not currently install with anything besides very very basic Mod Security rules.

    You can find our up to date documentation on Mod Security here: http://documentation.cpanel.net/display/EA/Apache+Module%3A+ModSecurity

    You can put the rules that you want to use directly into the text area in the ModSecurity plugin interface. If you click "default configuration," it removes any rules that you have added.
     
    #2 Shavaun, Jul 28, 2014
  3. durangod

    durangod Well-Known Member

    Joined:
    May 12, 2012
    Messages:
    411
    Likes Received:
    22
    Trophy Points:
    68
    cPanel Access Level:
    Root Administrator
    Thanks so much, the default is good for now as a base just until im ready to do more right. The default is safe enough and generic enough to start with right?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 durangod, Jul 28, 2014
  4. Shavaun

    Shavaun Well-Known Member

    Joined:
    Aug 15, 2013
    Messages:
    106
    Likes Received:
    0
    Trophy Points:
    91
    cPanel Access Level:
    Root Administrator
    The 'default' rules that we provide with ModSecurity are *very* basic and will not provide significant protection if someone attempts to attack your server. There are other methods of security, you'll have to pick the best ones for your circumstance and server configuration.

    In general, I would recommend having rules in addition to the default ones. You may find more information from OWASP or any of the other groups that provide ModSecurity rules.
     
    #4 Shavaun, Jul 28, 2014
  5. durangod

    durangod Well-Known Member

    Joined:
    May 12, 2012
    Messages:
    411
    Likes Received:
    22
    Trophy Points:
    68
    cPanel Access Level:
    Root Administrator
    ok thanks, i am running config server firewall also.. I just needed a starting point is all.. Basic is ok with me until i am able to add more rules. thanks so much :)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 durangod, Jul 28, 2014
(You must log in or sign up to post here.)
Loading...
Similar Threads - modsecurity question
  1. lukekenny

    New Thread ModSecurity Rule Triggered by autodiscover

    lukekenny, Oct 14, 2018 at 5:11 AM, in forum: Security
    Replies:
    0
    Views:
    32
    lukekenny
    Oct 14, 2018 at 5:11 AM
  2. quizknows

    New Thread A Guide to ModSecurity in 2018, for administrators

    quizknows, Oct 12, 2018 at 1:41 PM, in forum: Security
    Replies:
    0
    Views:
    56
    quizknows
    Oct 12, 2018 at 1:41 PM
  3. Volt55

    ModSecurity add & remove rule for a domain

    Volt55, Sep 16, 2018, in forum: Security
    Replies:
    2
    Views:
    98
    linux4me2
    Sep 17, 2018
  4. joaosavioli

    Brute force wp-login.php modsecurity

    joaosavioli, Sep 4, 2018, in forum: General Discussion
    Replies:
    4
    Views:
    227
    cPanelLauren
    Sep 5, 2018
  5. niceboy

    disable/enable a modsecurity rule thru ssh

    niceboy, Aug 4, 2018, in forum: EasyApache
    Replies:
    2
    Views:
    145
    cPanelMichael
    Aug 6, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice