Install Mod_Sec Control di cpanel

1. install ConfigServer ModSecurity Control (cmc) http://www.configserver.com/cp/cmc.html untuk mempermudah management user


2. download rule dari http://www.gotroot.com/mod_security+rules dan upload ke direktori /usr/local/apache/conf/modsec, create direktori modsec kalau tidak ada

3. Download semua rule misal

wget http://downloads.prometheus-group.com/delayed/rules/modsec/00_asl_whitelist.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/05_asl_exclude.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/10_asl_antimalware.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/malware-blacklist.txt
wget http://downloads.prometheus-group.com/delayed/rules/modsec/30_asl_antispam.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/domain-blacklist.txt
wget http://downloads.prometheus-group.com/delayed/rules/modsec/50_asl_rootkits.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/00_asl_rbl.conf

4. Mod_sec configurasi

# ConfigServer ModSecurity whitelist file
Include /usr/local/apache/conf/modsec2.whitelist.conf

SecRule REQUEST_URI "x=ftpquickbrute" "deny"
SecRule REQUEST_URI "wrobot\.php"
SecRule REQUEST_URI "/wrobot/"

SecCacheTransformations Off
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType (null) text/html text/plain text/xml
SecResponseBodyLimit 2621440
SecArgumentSeparator "&"
SecCookieFormat 0
SecRequestBodyInMemoryLimit 131072
SecResponseBodyLimitAction ProcessPartial
SecUploadDir /tmp
SecTmpDir /tmp
SecDataDir /tmp
SecServerSignature Apache
SecPcreMatchLimit 100000
SecPcreMatchLimitRecursion 100000

#Include /usr/local/apache/conf/modsec/00_asl_whitelist.conf
Include /usr/local/apache/conf/modsec/05_asl_exclude.conf
Include /usr/local/apache/conf/modsec/10_asl_antimalware.conf
#Include /usr/local/apache/conf/modsec/malware-blacklist.txt
#Include /usr/local/apache/conf/modsec/30_asl_antispam.conf
#Include /usr/local/apache/conf/modsec/domain-blacklist.txt
Include /usr/local/apache/conf/modsec/50_asl_rootkits.conf
#Include /usr/local/apache/conf/modsec/00_asl_rbl.conf

  • Email, SSL
  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

Mail Security Tweaks

Cek lokasi pengiriman email terbanyak grep cwd /var/log/exim_mainlog | grep -v /var/spool | awk...

Mysqldump dengan PHP

Berikut ini script untuk membuat backup database dengan mysqldump pada script php  ...

Instalasi cPanel pada Server Centos

Langkah-langkah yang harus disiapkan. 1.Pastikan anda memiliki koneksi Internet yang stabil...

Convert Database ENGINE from InnoDB to MyISAM

Gunakan scrip PHP di bawah ini untuk mengubah database ENGINE dari InnoDB ke MyISAM  ...

How to Install mod_geoIP for cPanel

Please do the following steps: # cd /var/cpanel/easy/apache/custom_opt_mods # wget...