• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved Web Application Firewall - mod_security

M

Matthl

Basic Pleskian
Hi,

i have two questions concerning the topic.

1) Can Custom Directives be set per Domain/Subdomain? For example "SecRequestBodyAccess off". Or is it only possible to globally set them in "Tools & Settings" - "Web Application Firewall (ModSecurity)" - "Change Rule Set"?

2) What's the correct way to enter "Security rule IDs"? Seperate them with space between? One per line?

Thank you

Kind regards
Matthl
 
Hi Matthl,

Matthl said:
1) Can Custom Directives be set per Domain/Subdomain? For example "SecRequestBodyAccess off". Or is it only possible to globally set them in "Tools & Settings" - "Web Application Firewall (ModSecurity)" - "Change Rule Set"?
Click to expand...
Even that the following KB - article has been written for "Plesk 12.5 for Linux", it is as well valid for "Plesk Onyx for Linux":



Matthl said:
2) What's the correct way to enter "Security rule IDs"? Seperate them with space between? One per line?
Click to expand...
Quoted from the official Plesk documentation ( => Web Application Firewall (ModSecurity) ):
The security rule ID is an integer number in quotation marks, starting with 3 and put with the prefix id in square brackets. For example, [id "340003"]
Click to expand...
... and "YES", pls. put each ID in a new line, as you will have a cleaner structure in case you need to investigate issues/errors/problems. ;)


For further informations, pls. consider as well to read and follow:

=> Atomic ModSecurity Rules - Atomicorp Wiki

... and pls. be aware, that you will get support for this Plesk component at for example: => Atomicorp • View forum - Atomic Secured Linux Support
 
You must log in or register to reply here.

Similar threads

K
Resolved Web Application Firewall: Security rule IDs broken/reset
Replies
8
Views
1K
pleskpanel
P
F
Issue SQLmap attack detected (ID: 218500) on blank page
Replies
5
Views
2K
abdulsemiu
A
R
Issue Problem with web application firewall - file extension is restricted by policy
Replies
3
Views
2K
Linulex
Linulex
B
Issue ModSecurity rule exception not working
Replies
4
Views
3K
benjamin-lgba
B
Sofie76
Resolved Web Application Firewall for Ubuntu 16.04 (Hacking attacks)
Replies
1
Views
1K
Nik G
N
Back
Top