• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:

    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

modesecurity

  1. K

    Question WAF ModSecurity Upgrade ChangeLog

    Hi Forum I would like to ask if there is a upgrade/log/plan for ModSecurity for Plesk? On 20.06 we received a Plesk update which upgraded ModSecurity from 3.6.* to 4.2.0 and this caused major issues in our setup. We have several custom rules and nothing worked properly anymore. My Questions...
  2. P

    Resolved Update error Mod Security

    Hi, when Plesk try's to update Mod Security this error occurs Execution failed. Command: ai.exe Arguments: Array ( [0] => --select-product-id [1] => panel [2] => --select-release-current [3] => --upgrade-installed-components ) Details: ERROR: The installation of the package...
  3. L

    Question Imunify360 ModSecurity Auto Update

    Is it possible to set ModSecurity to AutoUpdate in Imunify360? We keep getting notifications that the ModSecurity (WAF) ruleset is out of date. The notification mentions that there is an AutoUpdate feature, but I cant seem to find this inside the Imunify360 settings on the dashboard. Thanks
  4. M

    Issue Failed to update ModSecurity ruleset: modsecurity_ctl failed: gpg: key 4520AFA9: "Atomicorp (Atomicorp Official Signing Key) <[email protected]>"

    Error: Failed to update ModSecurity ruleset: modsecurity_ctl failed: gpg: key 4520AFA9: "Atomicorp (Atomicorp Official Signing Key) <[email protected]>" not changed gpg: Total number processed: 1 gpg : unchanged : 1 gpg: assuming signed data in `/tmp/tmpsFI_FL/aum' gpg: Signature made Tue...
  5. Q

    Issue mod security settings for nextcloud works only fo several hours

    Hi there, I have a temporary problem with the mod security settings. In the Safety Rules I have defined an exception 316736 for Nextcloud but this works for about 24 hours and after that I have the problem again that Nextcloud is blocked. As soon as I change the ruleset in ModSecurity, save...
  6. F

    Question Mod Security for apache or Nginx?

    Hi! I wanted to activate mod security, but I noticed, that I have to choose between nginx oder apache. Some websites don't support nginx so we are using php through apache and nginx. Is my understanding right that one of the webservers is always unprotected by the web application firewall in...
  7. P

    Issue my website not rendering in some countries due to modsecurity

    I am a newbe in plesk and i need your help. My website is not opening in some many countries. It even affect my own Ip from time to time. So I have to use vpn in other to access my website. Currently is rendering in many countries. I am using aws lightsail so i contacted aws and they seem not to...
  8. P

    Question my website not rendering in some countries due to modsecurity

    I am a newbe in plesk and i need your help. My website is not opening in some many countries. It even affect my own Ip from time to time. So I have to use vpn in other to access my website. Currently is rendering in many countries. I am using aws lightsail so i contacted aws and they seem not...
  9. Ehud

    Question Integrating AbuseIPDB RealTime IP Check, possibly using ModSecurity and LUA

    Hi, I would like to check IPs connecting ports as 80 and 443, on real-time, against data base of abusing IPs, as abuseupdb.com. I have an API key, which allows curl checks. A test may look like this: Where the results would look like this: I also use ModSecurirty, that enables LUA...
  10. N

    Question whitelist JSON URL with the firewall

    Hi I'm newbie pleskien please How I can whitelist this [shopdomain.com]/wp-json/judgeme/v1/* in the firewall ? or via the .htaccess how I can do it please ?
  11. Z0mbiel0ne

    Issue The ModSecurity rule set could not be updated: Due to license restrictions, the Security Core Features (ModSecurity and Fail2Ban) are not available.

    Hey, after updating my license I get the following error: "The ModSecurity rule set could not be updated: Due to license restrictions, the Security Core Features (ModSecurity and Fail2Ban) are not available." How can I fix this? Greetings
  12. H

    Issue Can't install Imunify360 on Obsidian 18.0.23

    I am trying to install and configure Imunify360 on my webserver. I've installed ModSecurity and bought a license for Imunify. I'm following this guide: https://docs.imunify360.com/hosting_panels_specific_settin/#plesk When I run the command imunify360-agent install-vendors , the reply is as...
  13. M

    Question Ban IP with ModSecurity

    Hello, I'm using "ModeSecurity" extension with "Comodo (Free)". I'm bored to check logs and manually ban suspicious IPs that violate ModeSecurity rules hundreds of times. Is there a way to Ban IP's automatically, if the IP violates ModeSecurity rules (for example XSS or SQLMap Attack) more than...
Back
Top