Resolved Web Application Firewall - mod_security

[Matthl]

Hi,

i have two questions concerning the topic.

1) Can Custom Directives be set per Domain/Subdomain? For example "SecRequestBodyAccess off". Or is it only possible to globally set them in "Tools & Settings" - "Web Application Firewall (ModSecurity)" - "Change Rule Set"?

2) What's the correct way to enter "Security rule IDs"? Seperate them with space between? One per line?

Thank you

Kind regards
Matthl

 

[UFHH01]

Hi Matthl,

1) Can Custom Directives be set per Domain/Subdomain? For example "SecRequestBodyAccess off". Or is it only possible to globally set them in "Tools & Settings" - "Web Application Firewall (ModSecurity)" - "Change Rule Set"?

Even that the following KB - article has been written for "Plesk 12.5 for Linux", it is as well valid for "Plesk Onyx for Linux":

=> [How To] Manage ModSecurity on per domain basis.​

2) What's the correct way to enter "Security rule IDs"? Seperate them with space between? One per line?

Quoted from the official Plesk documentation ( => Web Application Firewall (ModSecurity) ):

The security rule ID is an integer number in quotation marks, starting with 3 and put with the prefix id in square brackets. For example, [id "340003"]

... and "YES", pls. put each ID in a new line, as you will have a cleaner structure in case you need to investigate issues/errors/problems.


For further informations, pls. consider as well to read and follow:

=> Atomic ModSecurity Rules - Atomicorp Wiki

... and pls. be aware, that you will get support for this Plesk component at for example: => Atomicorp • View forum - Atomic Secured Linux Support​

 

[Matthl]

Thank you!