• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.

Resolved Web Application Firewall - mod_security

M

Matthl

Basic Pleskian
Hi,

i have two questions concerning the topic.

1) Can Custom Directives be set per Domain/Subdomain? For example "SecRequestBodyAccess off". Or is it only possible to globally set them in "Tools & Settings" - "Web Application Firewall (ModSecurity)" - "Change Rule Set"?

2) What's the correct way to enter "Security rule IDs"? Seperate them with space between? One per line?

Thank you

Kind regards
Matthl
 
Hi Matthl,

Matthl said:
1) Can Custom Directives be set per Domain/Subdomain? For example "SecRequestBodyAccess off". Or is it only possible to globally set them in "Tools & Settings" - "Web Application Firewall (ModSecurity)" - "Change Rule Set"?
Click to expand...
Even that the following KB - article has been written for "Plesk 12.5 for Linux", it is as well valid for "Plesk Onyx for Linux":



Matthl said:
2) What's the correct way to enter "Security rule IDs"? Seperate them with space between? One per line?
Click to expand...
Quoted from the official Plesk documentation ( => Web Application Firewall (ModSecurity) ):
The security rule ID is an integer number in quotation marks, starting with 3 and put with the prefix id in square brackets. For example, [id "340003"]
Click to expand...
... and "YES", pls. put each ID in a new line, as you will have a cleaner structure in case you need to investigate issues/errors/problems. ;)


For further informations, pls. consider as well to read and follow:

=> Atomic ModSecurity Rules - Atomicorp Wiki

... and pls. be aware, that you will get support for this Plesk component at for example: => Atomicorp • View forum - Atomic Secured Linux Support
 
You must log in or register to reply here.

Similar threads

K
Resolved Web Application Firewall: Security rule IDs broken/reset
Replies
8
Views
2K
pleskpanel
P
F
Issue SQLmap attack detected (ID: 218500) on blank page
Replies
5
Views
2K
abdulsemiu
A
R
Issue Problem with web application firewall - file extension is restricted by policy
Replies
3
Views
2K
Linulex
Linulex
B
Issue ModSecurity rule exception not working
Replies
4
Views
3K
benjamin-lgba
B
Sofie76
Resolved Web Application Firewall for Ubuntu 16.04 (Hacking attacks)
Replies
1
Views
1K
Nik G
N
Back
Top