Install Mod_Security On Plesk Server(Centos)


Install mod_security with YUM. This tool can prevent a lot of problems, file injections, attacks etc to apache.

# wget -q -O – http://www.atomicorp.com/installers/atomic.sh | sh
# yum install mod_security

You can get the Free Mod_Security Rules.

# cd /etc/httpd/modsecurity.d/

Download rules:
# wget http://downloads.prometheus-group.com/delayed/rules/modsec-2.5-free-latest.tar.gz

Extract it :

#tar -zxvf modsec-2.5-free-latest.tar.gz

Note: Make sure that 00_asl_rbl.conf, 00_asl_whitelist.conf will be uninstalled, renamed or deleted. You can disable some rules what you do not need or create problems. After you done all with your modification restart the apache.

#/etc/init.d/httpd restart

Have a fun :)

About these ads

3 Responses to “Install Mod_Security On Plesk Server(Centos)”

  1. otto84 Says:

    Have U tested mod_security after installation load module is not added to httpd.conf ?

  2. Yes Aparna otto84 is correct we have to add modules path in httpd.conf
    such as

    LoadFile /usr/lib64/libxml2.so
    LoadModule security2_module /etc/httpd/modules/mod_security2.so
    Include conf/modsec/*.conf

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Follow

Get every new post delivered to your Inbox.

%d bloggers like this: