cxs and ModSecurity v2.9 Tweet

Community forum to discuss cxs.
If you believe that there is a problem with your cxs installation and want support then, as a paid product, you should use the helpdesk after having consulted the documentation.
Post Reply
HostBob
Junior Member
Posts: 53
Joined: 20 Feb 2013, 18:34

cxs and ModSecurity v2.9 Tweet

Post by HostBob »

Thank you for your recent Tweet regarding cxs and ModSecurity v2.9.

I have tried to edit /usr/local/apache/conf/modsec2.user.conf

As detailed in your blog post:
http://blog.configserver.com/?p=2522

However I see currently no mention of CXS in the configuration file:

"and add the line above after the cxs ModSecurity rule and then restart httpd."

Have I missed an important change I should have made when installing CXS in the first place, some years ago?

Thank you!
Sarah
Moderator
Posts: 934
Joined: 09 Dec 2006, 22:49

Re: cxs and ModSecurity v2.9 Tweet

Post by Sarah »

It sounds like cxs scanning using modsecurity was never enabled on your server. It is not necessarily a requirement, especially if you have cxswatch running. However, if you want to use cxs scanning with modsecurity, the easiest way to add it is to use our new cPanel modsecurity vendor as per this blog post:
http://blog.configserver.com/?p=2524
HostBob
Junior Member
Posts: 53
Joined: 20 Feb 2013, 18:34

Re: cxs and ModSecurity v2.9 Tweet

Post by HostBob »

Ah OK. Thank you.

So if I use your vendor rules, do I not need to worry about the setting change for cxs/modsec 2.9 compatibility at all?
HostBob
Junior Member
Posts: 53
Joined: 20 Feb 2013, 18:34

Re: cxs and ModSecurity v2.9 Tweet

Post by HostBob »

ie. I have not set this line anywhere:

SecUploadKeepFiles RelevantOnly

Should I?

TY!!
Sarah
Moderator
Posts: 934
Joined: 09 Dec 2006, 22:49

Re: cxs and ModSecurity v2.9 Tweet

Post by Sarah »

No, it will add that line automatically so you do not need to worry about it.
HostBob
Junior Member
Posts: 53
Joined: 20 Feb 2013, 18:34

Re: cxs and ModSecurity v2.9 Tweet

Post by HostBob »

Brill. TY.
Post Reply