The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Modsecurity Vendor Rule

Discussion in 'Security' started by hrace009, Sep 27, 2016.

Tags:
  1. hrace009

    hrace009 Well-Known Member

    Joined:
    Dec 24, 2013
    Messages:
    66
    Likes Received:
    8
    Trophy Points:
    8
    Location:
    Root
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,
    I am not to much experience at mod_security.
    I have installed Commodo ModSecurity Vendor Rule Set. Should i disable or Enable build in cPanel rule set?
     
  2. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,146
    Likes Received:
    34
    Trophy Points:
    48
    Location:
    India
    cPanel Access Level:
    Root Administrator
  3. hrace009

    hrace009 Well-Known Member

    Joined:
    Dec 24, 2013
    Messages:
    66
    Likes Received:
    8
    Trophy Points:
    8
    Location:
    Root
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hi thanks for the reply, yes i know about that. but my question should i disable default build in from cPanel? or is good to active both of commodo and cpanel rules?
     
  4. linux4me2

    linux4me2 Well-Known Member

    Joined:
    Aug 21, 2015
    Messages:
    83
    Likes Received:
    15
    Trophy Points:
    8
    Location:
    USA
    cPanel Access Level:
    Root Administrator
    I'm not an expert, but in my experience, it is best to have only one vendor rule set enabled, so you should disable the OWASP rule set if you're going to use the Comodo CWAF vendor rule set.

    The other thing you should do is go through all the Comodo rules (Security -> ModSecurity Tools -> Rules List) starting from the last page and working forward, and disable all of the rules for software you do not and never will have installed on the server for better performance and fewer false positives.
     
  5. hrace009

    hrace009 Well-Known Member

    Joined:
    Dec 24, 2013
    Messages:
    66
    Likes Received:
    8
    Trophy Points:
    8
    Location:
    Root
    cPanel Access Level:
    Root Administrator
    Twitter:
    hi, yes i read their notes
    seems it must one to enable
     
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    676
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page