Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Why are modsecurity rules not installed by default?

Discussion in 'Security' started by ::Gomez::, Jan 24, 2018.

  1. ::Gomez::

    ::Gomez:: Member

    Joined:
    Oct 13, 2003
    Messages:
    17
    Likes Received:
    1
    Trophy Points:
    151
    Location:
    Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hey! how are you guys! I was just wondering if there is any specific reason why ModSecurity rules comes uninstalled on all cpanel servers... did you have any kind of issue after enabling it? wordpress/joomla are fully compatible? its a must to have it enabled/installed or there is no big difference in regards to security ?


    THanks!
     
  2. DennisMidjord

    DennisMidjord Well-Known Member

    Joined:
    Sep 27, 2016
    Messages:
    129
    Likes Received:
    8
    Trophy Points:
    18
    Location:
    Denmark
    cPanel Access Level:
    Root Administrator
    My guess is that it could be causing issues with different types of software. We've seen a lot of false positives in PrestaShop and Wordpress.
     
  3. Tearabite

    Tearabite Well-Known Member

    Joined:
    Nov 28, 2010
    Messages:
    76
    Likes Received:
    11
    Trophy Points:
    58
    Location:
    Southern California
    cPanel Access Level:
    Root Administrator
    There is the potential for a LOT of issues. Mod_Security requires a lot of care and feeding and customizing to work with your software (Wordpress, Drupal, Joomla, etc) - more than a lot of people want to deal with.. But once it's dialed-in, it's worth it.
     
    quizknows and cPanelMichael like this.
  4. ::Gomez::

    ::Gomez:: Member

    Joined:
    Oct 13, 2003
    Messages:
    17
    Likes Received:
    1
    Trophy Points:
    151
    Location:
    Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Great! that´s what I imagined...

    Also with the modsecurity rule set provided/modified by cPanel ?


    THanks a lot guys!
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    43,928
    Likes Received:
    1,819
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. ::Gomez::

    ::Gomez:: Member

    Joined:
    Oct 13, 2003
    Messages:
    17
    Likes Received:
    1
    Trophy Points:
    151
    Location:
    Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:

    Thanks! that was clear enaugph! I will start using it with low traffic servers and then expand the deployment to others. Thanks!
     
    quizknows likes this.
  7. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    1,010
    Likes Received:
    87
    Trophy Points:
    78
    cPanel Access Level:
    DataCenter Provider
    ModSecurity, as with any Firewall (it is a web app firewall after all) is only as good as its rule set.

    Owasp is a very in depth rule set, and as noted well in this thread, requires some customization. This is a caveat of OWASP more than ModSecurity itself. Some rule sets like Comodo require much less pruning.

    At this point in the industry, there are several amazing providers out there that offer managed/cloud WAF with a much more hands off experience. Of course I guess like anything there are trade offs to open source vs commercial solutions. However if you are a shared hosting provider, it's very worth looking at companies like cloudflare, sucuri, or sitelock. They see every hack going on across many customers, and it's much more efficient to offload that work to people who have done the research for you and can clean it reliably.

    I personally recommend a combination of both, modsec by default, and 3rd party layers as an added service option.
     
    cPanelMichael likes this.
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice