• Please be aware: Kaspersky Anti-Virus has been deprecated
    With the upgrade to Plesk Obsidian 18.0.64, "Kaspersky Anti-Virus for Servers" will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

waf

  1. K

    Question WAF ModSecurity Upgrade ChangeLog

    Hi Forum I would like to ask if there is a upgrade/log/plan for ModSecurity for Plesk? On 20.06 we received a Plesk update which upgraded ModSecurity from 3.6.* to 4.2.0 and this caused major issues in our setup. We have several custom rules and nothing worked properly anymore. My Questions...
  2. B

    Question Disable WAF (ModSecurity) if using Immunify360?

    Just want to check before I go ahead with this The youtube video above suggests disabling WAF (ModSecurity) if using Immunify360. I have a plesk server with 50+ websites hosted for clients. Is this something that is actually recommended to do?
  3. WebHostingAce

    Issue ModSecurity with Atomic Basic Rule Set appear be not working

    Hi, I'm using ModSecurity with Atomic Basic Rule Set across number of servers. Recently I have noticed the ModSecurity is not responding to any of these test explained this is support article...
  4. C

    Question WAF Modsecurity

    I have a lot of websites on the server running with Ngnix only (php with nginx). Modsecurity rules are set to Nginx (ModSecurity 3.0) with custom ruleset of Comodo. All is working fine. My question is now what are happens with some websites they are running with apache and nginx as proxy (php...
  5. jbjones817

    Issue Atomicorp mod_security ruleset not available on Ubuntu 18.04 and Plesk Obsidian

    I purchased a license for the Atomic mod_security ruleset because let's face it, the OWASP rules are waaaay to restrictive for anyone running WordPress. However, when I go to Tools & Settings -> Web Application Firewall it's not even one of the listed options.
  6. S

    Resolved WAF Update Error Atomic Basic ModSecurity

    Hello, i have on my server installed OS ‪CentOS 6.10 (Final)‬ Onyx Version 17.8.11 Update #37 . I have in WAF Atomic Basic ModSecurity activated. Yum Updates are done. I get the following error: Error: Failed to update the ModSecurity rule set: modsecurity_ctl failed: gpg: key 4520AFA9...
  7. D

    Issue ModSecurity: Access denied with code 403 (phase 2) FALSE POSITIVE

    Hi, i had this some while ago, where I excluded a ModSec Rule. But this OVIOUSLY is not working. I must say - i am very annoyed. As my last Post regarding Mailbox Outgoing Control is NOT working and no answer. Now I find another Problem on another Server and gues what: NOT WORKING. So the...
  8. F

    Issue WAF does not switch off designated security rules

    Hello, Server config : - ‪Debian 7.11‬ - Plesk 12.5.30 Update #68 - MySQL 5.6.37-1debian7 - WAF using Atomic Basic ModSecurity, with daily updates, and Tradeoff configuration Completely up-to-date at this time (Plesk and apt-get upgrade) (If you need more info, just ask.) One one of the...
  9. L

    Question Plesk Onyx + WAF + Atomicorp + nginx = ???

    hello.... i've had a few discussions with people at Atomicorp. I'm trying to find out WHAT or HOW Plesk is dealing with atomicorp rules for nginx. atomicorp says: rules for apache are very stable. rules for nginx are beta? While ASL for nginx is supported.... what does Plesk say about...
  10. BrinsleyP

    Resolved Error: ASL has not been configured

    Hello,,, I receive in hour-in-hour this email: ---------- /etc/cron.hourly/asl: Error: ASL has not been configured ---------- In a simples search on web, i discovery this error its cause by atomic rules (WAF). But now i use comodo rules, but i try set to atomic to see the results. and in plesk...
Back
Top