Disabling individual modsecurity rules

jayw1

Verified User
Joined
Nov 20, 2019
Messages
166
Location
USA
What's the correct way to disable a specific modsecurity rule? Right now I'm commenting out a line in /usr/local/cwaf/rules/02_Global_Generic.conf and it works, but I get a syntax error in DirectAdmin > Custom HTTPD Configurations

2020-05-21 15:48:56.712098 [ERROR] [Module:Mod_Security]setSecRule(type 2) /usr/local/lsws/conf/httpd-modsecurity.conf failed, ret -1, reason: 'Rules error. File: /usr/local/cwaf/rules/02_Global_Generic.conf. Line: 14. Column: 174. Expecting an action, got: "id:211350,chain,t:none,msg:'COMODO WAF: IGNORE_CRS||%{tx.domain}|%{tx.mode}|2',phase:2,pass,nolog,skipAfter:'IGNORE_CRS_Generic',rev:1,severity:2,tag:'CWAF',tag:'Generic'"

Is there a proper way to do this?
Using OpenLiteSpeed if that matters.
 

jayw1

Verified User
Joined
Nov 20, 2019
Messages
166
Location
USA
Actually, the line the error mentioned is one I didn't even touch.

1.png

An error in the default config or still a result of me commenting out a rule several lines below?
 
Top