Articles in this section

See more

How to disable a single ModSecurity rule for a website?

Avatar
Alexandr Shadrin
Updated
Follow

Applicable to:

  • Plesk 12.5 for Linux
  • Plesk Onyx for Linux

Question

How to disable a single ModSecurity rule by its ID for a particular domain?

Answer

  1. Log into Plesk.
  2. Go to Domains > example.com > Web Application Firewall.
  3. Specify the rule IDs (for example, 340003), tags (for example, CVE-2011-4898), or a regular expression (for example, XSS) used in the rules that need to be switched off, and click OK.

    Note: Make sure that Web application firewall mode is set to Detection only or On.

Alternatively, it is possible to use Additional Apache Directives as described above:

  1. Log into Plesk.
  2. Create a custom Apache directive under Domains > example.com > Apache & nginx Settings > Additional Apache directives section:

    Note: it is possible to specify more than one RuleID. Simply add another line, like the following:

    CONFIG_TEXT: <IfModule mod_security2.c>
    SecRuleRemoveById 340162
    SecRuleRemoveById 340163
    </IfModule>

    OR

    CONFIG_TEXT: <IfModule mod_security2.c>
    SecRuleRemoveById 340162 340163
    </IfModule>

In the example above rules with IDs 340162 and 340163 are disabled for domain example.com.

Additional Information

Mod security - Atomicorp Wiki: Creating custom rules

Mod security - Atomicorp Wiki: Disabling Mod_security per domain

Comments

0 comments

Please sign in to leave a comment.

Have more questions? Submit a request

Related articles