Install Mod_Sec Control di cpanel

1. install ConfigServer ModSecurity Control (cmc) http://www.configserver.com/cp/cmc.html untuk mempermudah management user


2. download rule dari http://www.gotroot.com/mod_security+rules dan upload ke direktori /usr/local/apache/conf/modsec, create direktori modsec kalau tidak ada

3. Download semua rule misal

wget http://downloads.prometheus-group.com/delayed/rules/modsec/00_asl_whitelist.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/05_asl_exclude.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/10_asl_antimalware.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/malware-blacklist.txt
wget http://downloads.prometheus-group.com/delayed/rules/modsec/30_asl_antispam.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/domain-blacklist.txt
wget http://downloads.prometheus-group.com/delayed/rules/modsec/50_asl_rootkits.conf
wget http://downloads.prometheus-group.com/delayed/rules/modsec/00_asl_rbl.conf

4. Mod_sec configurasi

# ConfigServer ModSecurity whitelist file
Include /usr/local/apache/conf/modsec2.whitelist.conf

SecRule REQUEST_URI "x=ftpquickbrute" "deny"
SecRule REQUEST_URI "wrobot\.php"
SecRule REQUEST_URI "/wrobot/"

SecCacheTransformations Off
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType (null) text/html text/plain text/xml
SecResponseBodyLimit 2621440
SecArgumentSeparator "&"
SecCookieFormat 0
SecRequestBodyInMemoryLimit 131072
SecResponseBodyLimitAction ProcessPartial
SecUploadDir /tmp
SecTmpDir /tmp
SecDataDir /tmp
SecServerSignature Apache
SecPcreMatchLimit 100000
SecPcreMatchLimitRecursion 100000

#Include /usr/local/apache/conf/modsec/00_asl_whitelist.conf
Include /usr/local/apache/conf/modsec/05_asl_exclude.conf
Include /usr/local/apache/conf/modsec/10_asl_antimalware.conf
#Include /usr/local/apache/conf/modsec/malware-blacklist.txt
#Include /usr/local/apache/conf/modsec/30_asl_antispam.conf
#Include /usr/local/apache/conf/modsec/domain-blacklist.txt
Include /usr/local/apache/conf/modsec/50_asl_rootkits.conf
#Include /usr/local/apache/conf/modsec/00_asl_rbl.conf

  • Email, SSL
  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

Mail Security Tweaks

Cek lokasi pengiriman email terbanyak grep cwd /var/log/exim_mainlog | grep -v /var/spool | awk...

Installing mod_cloudflare on cPanel

You can install mod_cloudflare on your cPanel server by running the following command:sudo perl...

Install Clamav cPanel Command Line

Berikut perintah untuk install clamav tanpa harus login ke WHM...

How to create backup Account via SSH?

Step 1: Log-in to the SSH as Root user. Step 2: Enter the following command string on the...

Optimize MySQL

You could try running the following script to see the recommendations it provides: Code:...