rhoekman
Verified User
There is an intresting thread at http://www.webhostingtalk.com/showthread.php?threadid=215612 mainly discussing using mod_security with cPanel. Anyone here using it in conjunction with DA? If so, what are your settings and what should you do or not do?
For people who do not know what mod_security is you can go here http://www.modsecurity.org
Rick
Example of what I have in my httpd.conf:
# Mod_Security directives
<IfModule mod_security.c>
# Turn the filtering engine On or Off
SecFilterEngine On
# Make sure that URL encoding is valid
SecFilterCheckURLEncoding On
# Unicode encoding check
SecFilterCheckUnicodeEncoding Off
# Only allow bytes from this range
SecFilterForceByteRange 0 255
# Only log suspicious requests
SecAuditEngine RelevantOnly
# The name of the audit log file
SecAuditLog /var/log/audit_log
# Debug level set to a minimum
SecFilterDebugLog /var/log/modsec_debug_log SecFilterDebugLevel 0
# Should mod_security inspect POST payloads
SecFilterScanPOST On
# By default log and deny suspicious requests
# with HTTP status 500
SecFilterDefaultAction "deny,log,status:500"
# Put in a space to reveal nothing like this
# SecServerSignature " "
# I allways wanted a Nintendo webserver
SecServerSignature "Nintendo"
</IfModule>
For people who do not know what mod_security is you can go here http://www.modsecurity.org
Rick
Example of what I have in my httpd.conf:
# Mod_Security directives
<IfModule mod_security.c>
# Turn the filtering engine On or Off
SecFilterEngine On
# Make sure that URL encoding is valid
SecFilterCheckURLEncoding On
# Unicode encoding check
SecFilterCheckUnicodeEncoding Off
# Only allow bytes from this range
SecFilterForceByteRange 0 255
# Only log suspicious requests
SecAuditEngine RelevantOnly
# The name of the audit log file
SecAuditLog /var/log/audit_log
# Debug level set to a minimum
SecFilterDebugLog /var/log/modsec_debug_log SecFilterDebugLevel 0
# Should mod_security inspect POST payloads
SecFilterScanPOST On
# By default log and deny suspicious requests
# with HTTP status 500
SecFilterDefaultAction "deny,log,status:500"
# Put in a space to reveal nothing like this
# SecServerSignature " "
# I allways wanted a Nintendo webserver
SecServerSignature "Nintendo"
</IfModule>
Last edited: