The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Personalised rules + new modsecurity

Discussion in 'Security' started by globcom, Nov 4, 2014.

  1. globcom

    globcom Active Member

    Joined:
    May 24, 2008
    Messages:
    43
    Likes Received:
    1
    Trophy Points:
    8
    Hi,

    in WHM 11.44 it was possible to edit config
    WHM> plugins > mod security > edit config

    I don't find this feature in new WHM (11.46)

    ?

    Regards,
    Eric
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,482
    Likes Received:
    203
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    WHM » Security Center, you'll find ModSecurity options there now.
     
  3. globcom

    globcom Active Member

    Joined:
    May 24, 2008
    Messages:
    43
    Likes Received:
    1
    Trophy Points:
    8
    Thanks for your reply.

    I saw that, but I don't understand how I can insert personalized rules.

    Example, I use this rule :

    PHP:
    SecRule REQUEST_METHOD "POST"  "deny,status:401,id:5000130,chain,msg:'wp-login request blocked, no referer'"
    SecRule &HTTP_REFERER "@eq 0" "chain"
    SecRule REQUEST_URI "wp-login.php"
    for limit bruteforce on wp-login.php (for wordpress)

    Where can I put this rule for modsecurity ?

    Regards,
    Eric
     
  4. globcom

    globcom Active Member

    Joined:
    May 24, 2008
    Messages:
    43
    Likes Received:
    1
    Trophy Points:
    8
    It's ok. I found.

    Eric
     
Loading...

Share This Page