ConfigServer Community Forum

Posted: **19 Jun 2015, 09:55**

Thank you for your recent Tweet regarding cxs and ModSecurity v2.9.

I have tried to edit /usr/local/apache/conf/modsec2.user.conf

As detailed in your blog post:
http://blog.configserver.com/?p=2522

However I see currently no mention of CXS in the configuration file:

"and add the line above after the cxs ModSecurity rule and then restart httpd."

Have I missed an important change I should have made when installing CXS in the first place, some years ago?

Thank you!

Posted: **19 Jun 2015, 11:40**

It sounds like cxs scanning using modsecurity was never enabled on your server. It is not necessarily a requirement, especially if you have cxswatch running. However, if you want to use cxs scanning with modsecurity, the easiest way to add it is to use our new cPanel modsecurity vendor as per this blog post:
http://blog.configserver.com/?p=2524

Posted: **19 Jun 2015, 14:12**

Ah OK. Thank you.

So if I use your vendor rules, do I not need to worry about the setting change for cxs/modsec 2.9 compatibility at all?

Posted: **19 Jun 2015, 14:14**

ie. I have not set this line anywhere:

SecUploadKeepFiles RelevantOnly

Should I?

TY!!

Posted: **19 Jun 2015, 15:56**

No, it will add that line automatically so you do not need to worry about it.

Posted: **19 Jun 2015, 16:07**

Brill. TY.

ConfigServer Community Forum

cxs and ModSecurity v2.9 Tweet

cxs and ModSecurity v2.9 Tweet

Re: cxs and ModSecurity v2.9 Tweet

Re: cxs and ModSecurity v2.9 Tweet

Re: cxs and ModSecurity v2.9 Tweet

Re: cxs and ModSecurity v2.9 Tweet

Re: cxs and ModSecurity v2.9 Tweet