Hide SecruleEngine status options from users - Security Risk

sahostking

sahostking

Verified User
Joined
Jan 29, 2021
Messages
114
Location
South Africa
Hi

We don't like giving customers the option of disabling mod security as most customers would just disable the whole modsecuirty rather than just the particular rule giving them issues.

Is there a way we can do this and hide that feature from them?
 
You may add CMD_MODSECURITY to never_commands list in directadmin.conf.
 
Ok thanks

That looks like it takes it away from Admin swell so now we cannot disable rules. But only on OWASP

If I use comodo CWAF then all is fine as it has its own plugin feature we could use.
 
sahostking said:
Ok thanks

That looks like it takes it away from Admin swell so now we cannot disable rules. But only on OWASP

If I use comodo CWAF then all is fine as it has its own plugin feature we could use.
Click to expand...
commands.deny and Feature sets are other ways to do it :)
 
You must log in or register to reply here.
Back
Top