«
»

Install Mod_Security On Plesk Server(Centos)


Install mod_security with YUM. This tool can prevent a lot of problems, file injections, attacks etc to apache.

# wget -q -O – http://www.atomicorp.com/installers/atomic.sh | sh
# yum install mod_security

You can get the Free Mod_Security Rules.

# cd /etc/httpd/modsecurity.d/

Download rules:
# wget http://downloads.prometheus-group.com/delayed/rules/modsec-2.5-free-latest.tar.gz

Extract it :

#tar -zxvf modsec-2.5-free-latest.tar.gz

Note: Make sure that 00_asl_rbl.conf, 00_asl_whitelist.conf will be uninstalled, renamed or deleted. You can disable some rules what you do not need or create problems. After you done all with your modification restart the apache.

#/etc/init.d/httpd restart

Have a fun 🙂

This entry was posted on October 7, 2009 at 7:58 am and is filed under Apache. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

3 Responses to “Install Mod_Security On Plesk Server(Centos)”

  1. otto84 Says:
    May 9, 2010 at 9:28 am

    Have U tested mod_security after installation load module is not added to httpd.conf ?

    Reply
  2. mangesh Says:
    April 28, 2011 at 10:54 pm

    Yes Aparna otto84 is correct we have to add modules path in httpd.conf
    such as

    LoadFile /usr/lib64/libxml2.so
    LoadModule security2_module /etc/httpd/modules/mod_security2.so
    Include conf/modsec/*.conf

    Reply

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

%d bloggers like this: