modsecurity

Hi, is there a way to get the date ModSecurity was installed/enabled? I see the log files, but it looks like there is only a week's worth and I installed/enabled it before then. It wasn't installed on my Plesk installation, so I installed and activated the same date..perhaps I can determine...

Just want to check before I go ahead with this The youtube video above suggests disabling WAF (ModSecurity) if using Immunify360. I have a plesk server with 50+ websites hosted for clients. Is this something that is actually recommended to do?

In the process of upgrading to Obsidian, I had this conflict ; Exception: Failed to solve dependencies: plesk-modsecurity-configurator conflicts with mod_security-2.9.2-centos7.19091318.x86_64 I did remove mod_security thinking I would reinstall it after upgrade. Maybe I should have used the...

Hey everyone i have enabled modesecurity for my website using atomic corp rules. but when I update something on website using elementor keeping modsec on it gives me internal server error. if I turn off modsec and update it works fine. but I want to resolve this with modsec on. your help will be...

My current setup is Apache + ModSecurity with imunify360 ruleset. I want to run Nginx as a reverse proxy for Apache. Will I have to switch Mod security from Apache WAF to Nginx WAF with Imunify360 ruleset or do I keep Modsecurity as Apache? Is that supported?

Hi, I have a WCF site, that can't be called when ModSecurity is on. Found the description below in the EventViewer. Can this be solved? [client 46.39.122.103] ModSecurity: Access denied with code 403 (phase 1). Pattern match...

When entering this option we do not see any records, even though we have configured the tool to launch automatically daily at 06:25 every 60 minutes. When trying to launch the manual check, the following error appears: logparser failed: ERROR: Failed to construct 'audit-modsec-with-ts' step...

When I activate ModSecurity I have a problem with content types: [msg "COMODO WAF: Request content type is not allowed by policy. Please update file userdata_wl_content_type.||app.domain.de|F|2"] [data "TX:0=application/merge-patch+json"] Where I find die file userdata_wl_content_type to add...

Hi, I'm using ModSecurity with Atomic Basic Rule Set across number of servers. Recently I have noticed the ModSecurity is not responding to any of these test explained this is support article...

Hello everyone I'm just curious, i have enabled modsecurity on all my websites and i can see it's working in the log files. Today i happened to run: plesk bin nginx -s to get a list of all the modules installed and their status and found modsecurity shows as OFF: brotli on...

I need to make requests to the server via python scripts. This is prevented by default through ModSecurity Rule 913101 (User-Agent associated with scripting/generic HTTP client). To keep the highest level of security, I want to allow python requests only from certain IP addresses. For this...

Hi In the Plesk Help Center, in the article 'Does Plesk support Debian 11' it is stated that ModSecurity Atomic rule set is not supported. Is there any prospect in supporting the (Advanced) Atomic rule set on Debian 11? What rule set do you use / advice? Thanks Kris

Hello everybody, Some of my website visitor are getting FORBIDDEN ACCESS DENIED on my website. below is the information on modsecurity log: 15708555501342031954 141.101.107.81 80 127.0.0.1 80 --43640000-B-- GET /favicon.ico HTTP/1.1 Connection: Keep-Alive Accept...

I installed the Plesk, after days not working, not reachable sites. In the logs I see the modsecurity blocked attackers (yet CloudFlare IP adresses) and nobody can visit the sites... I don´t know why at 21th century is not integrated there CloudFlares real IP getting... I must completely disable...

I am having an issue with one of my server's IM360 ModSecurity Rule sets. I have another server with identical configuration (so I thought) where this issue is not present. The Issue: IM360 is configured and appears to be working fine. Fail to ban is OFF. Modsecurity is configured to use IM360...

I've been getting emails related to a cron job which is apparently supposed to call a Python script to shrink the ModSecurity SDBM database (at least I assume that's what it's for since I found a similar utility on GitHub). Originally I was getting an error saying that the path to the python...

I installed the Advanced ModSecurity Rules by Atomicorp extension, purchased the license. The rules of Advanced ModSecurity Rules by Atomicorp in the Modsecurity panel (web application firewall) does not appear. I have tried uninstalling and reinstalling modsecurity but the problem remains.

Dear support team, dear community. I'm new and I have some questions and I ask for your valued help as I still lack some experience. I get these error messages in the logs below. I read to use SSL it on the first two errors, which I do. Nevertheless, these error messages keep coming for all...

I have a website hosted by Goodhost.kz with Plesk control panel. The site is built on WordPress using Elementor. Yesterday, when saving changes to the site through Elementor, there was a "500 Error". Also, there was a "500 Internal Server Error" error when logging into the WordPress admin panel...

Hello, I have Mod security enabled on the server. Recently, we've been getting daily bots from cortex/1.0 bot (faceboook). WAF is on and set to comdo Free, and predefined to FAST. I have added some custom rules in the custom directives to limit that user-agent, from a solution I saw online used...