Plesk mod_security support

[kake26]

Here is a suggestion for the developers of Plesk. Add support for mod_security to plesk as in have install along with Plesk and use the gotroot.com rules. That would be very cool and allow us poor sysadmins to worry a bit less about our servers. Here is a link to mod_security.

 

[mikk]

mod_security is very easy to install.

But its far from an install and forget thing, you need to update rules regularly to get the best out of it - and personally i dont recommend the use of all the rules from gotroot , its best to customize rules around your enviroment.

mod_security works by examining things like the post payload, it then compares this with every single rule that you have listed, the more rules the longer this process takes - its best to just add stuff as you feel you need too.

There fore installing it initially via plesk maybe a start - but then you as the sysadmin need to know how to update it - so you may as well go the few extra steps and install it anyway

 

[kake26]

True, but I've implemented those and I've seen no noticable difference in the speed of any requests to and from the server. Besides I was wanting to use a very refined and well written rule set which gotroot.com provided.Also given the fact there are many that apply to applications in my plesk's application vault. I'll go as far as saying those rules and mod_security had I discovered them earlier than I did could have prevented a few sites from getting hacked on my server. Your point is well taken though.