1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Plesk mod_security support

Discussion in 'Plesk for Linux - 8.x and Older' started by kake26, Dec 24, 2005.

  1. kake26

    kake26 Guest

    Here is a suggestion for the developers of Plesk. Add support for mod_security to plesk as in have install along with Plesk and use the gotroot.com rules. That would be very cool and allow us poor sysadmins to worry a bit less about our servers. Here is a link to mod_security.
  2. mikk

    mikk Basic Pleskian

    Jan 29, 2005
    Likes Received:
    mod_security is very easy to install.

    But its far from an install and forget thing, you need to update rules regularly to get the best out of it - and personally i dont recommend the use of all the rules from gotroot , its best to customize rules around your enviroment.

    mod_security works by examining things like the post payload, it then compares this with every single rule that you have listed, the more rules the longer this process takes - its best to just add stuff as you feel you need too.

    There fore installing it initially via plesk maybe a start - but then you as the sysadmin need to know how to update it - so you may as well go the few extra steps and install it anyway :)
  3. kake26

    kake26 Guest

    True, but I've implemented those and I've seen no noticable difference in the speed of any requests to and from the server. Besides I was wanting to use a very refined and well written rule set which gotroot.com provided.Also given the fact there are many that apply to applications in my plesk's application vault. I'll go as far as saying those rules and mod_security had I discovered them earlier than I did could have prevented a few sites from getting hacked on my server. Your point is well taken though.