Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Modsecurity Vendor Rule

Discussion in 'Security' started by hrace009, Sep 27, 2016.

Tags:
  1. hrace009

    hrace009 Well-Known Member

    Joined:
    Dec 24, 2013
    Messages:
    75
    Likes Received:
    10
    Trophy Points:
    8
    Location:
    Root
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,
    I am not to much experience at mod_security.
    I have installed Commodo ModSecurity Vendor Rule Set. Should i disable or Enable build in cPanel rule set?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,888
    Likes Received:
    90
    Trophy Points:
    78
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. hrace009

    hrace009 Well-Known Member

    Joined:
    Dec 24, 2013
    Messages:
    75
    Likes Received:
    10
    Trophy Points:
    8
    Location:
    Root
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hi thanks for the reply, yes i know about that. but my question should i disable default build in from cPanel? or is good to active both of commodo and cpanel rules?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. linux4me2

    linux4me2 Well-Known Member

    Joined:
    Aug 21, 2015
    Messages:
    222
    Likes Received:
    57
    Trophy Points:
    28
    Location:
    USA
    cPanel Access Level:
    Root Administrator
    I'm not an expert, but in my experience, it is best to have only one vendor rule set enabled, so you should disable the OWASP rule set if you're going to use the Comodo CWAF vendor rule set.

    The other thing you should do is go through all the Comodo rules (Security -> ModSecurity Tools -> Rules List) starting from the last page and working forward, and disable all of the rules for software you do not and never will have installed on the server for better performance and fewer false positives.
     
  5. hrace009

    hrace009 Well-Known Member

    Joined:
    Dec 24, 2013
    Messages:
    75
    Likes Received:
    10
    Trophy Points:
    8
    Location:
    Root
    cPanel Access Level:
    Root Administrator
    Twitter:
    hi, yes i read their notes
    seems it must one to enable
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,477
    Likes Received:
    1,962
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    hrace009 likes this.
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice