Articles in this section

See more

How to disable specific ModSecurity rules in Plesk

Avatar
Kuzma Ivanov
Updated
Follow
Plesk for Linux kb: how-to

Applicable to:

  • Plesk for Linux

Question

How to disable specific ModSecurity rules in Plesk?

Answer

Note: Not all rules can be disabled due to the MODSEC-274 bug in ModSecurity.

 

Disabling rules for a domain

 

  • Via ModSecurity settings

    1. In Plesk, go to Domains > example.com > Web Application Firewall (ModSecurity).

    2. In the Switch off security rules section, specify rule IDs (for example, 340003), tags (for example, CVE-2011-4898), or a regular expression (for example, XSS) used in the rules that need to be switched off, and click OK.

      Note: The the Switch off security rules section is available only when the web application firewall mode is set to On or Detection only.

      • By rule IDs


        Web Application Firewall Settings

      • By rule tags


        Web Application Firewall Settings

       

     

  • Via additional Apache directives

    Note: This solution is intended for Plesk administrators only.

    1. In Plesk, go to Domains > example.com > Apache & nginx Settings.

    2. Create a custom Apache directive and put it into the Additional directives for HTTP/HTTPS fields. In the following example, rules with IDs 340162 and 340163 will be disabled:

      Note: It is possible to specify more than one RuleID. Add another line with RuleID on a new line.

      CONFIG_TEXT: <IfModule mod_security2.c>
      SecRuleRemoveById 340162
      SecRuleRemoveById 340163
      </IfModule>

      OR

      CONFIG_TEXT: <IfModule mod_security2.c>
      SecRuleRemoveById 340162 340163
      </IfModule>

 

Disabling rules server-wide 

 

  1. In Plesk, go to Tools & Settings > Web Application Firewall (ModSecurity) > Switch off security rules.

  2. Switch off rules using one of the following ways:

    • By rule IDs. Add IDs from the error message to the Security rule IDs field as shown on the following picture (Click to enlarge) and apply the changes.

      Note: If there are several rule IDs, put each on a new line.


      Web Application Firewall Settings

    • By rule tags. Add rule tags from the error message from Active to Deactivated as shown on the following picture (Click to enlarge) and apply the changes.


      Web Application Firewall Settings

Comments

2 comments

Sort by Date Votes
  • Avatar
    Fouad Ahmed Fouad

    Can we disable or skip mod_security for only one directory with Plesk?

    0
    Comment actions Permalink
  • Avatar
    Ivan Postnikov

    Hello Fouad Ahmed Fouad

    This may be done only by the manual configuration change. Use this link for the reference.

    0
    Comment actions Permalink

Please sign in to leave a comment.

Have more questions? Submit a request

Related articles