Articles in this section

See more

How to disable specific ModSecurity rules in Plesk

Avatar
Kuzma Ivanov
Updated
Follow
Plesk for Windows kb: how-to Plesk for Linux ABT: Group A

Applicable to:

  • Plesk for Linux
  • Plesk for Windows

Question

How to disable specific ModSecurity rules in Plesk per domain or server-wide?

Answer

Note: Not all rules can be disabled due to the MODSEC-274 bug in ModSecurity.

 

Disabling rules for a domain

 

  • Via ModSecurity settings

    1. Log in to Plesk.

    2. Go to Domains > example.com > Web Application Firewall (ModSecurity).

    3. In the Switch off security rules section, specify rule IDs (for example, 340003), tags (for example, CVE-2011-4898), or a regular expression (for example, XSS) used in the rules that need to be switched off, and click OK.

      Note: The Switch off security rules section is available only when the web application firewall mode is set to On or Detection only.

      • By rule IDs


        Web Application Firewall Settings

      • By rule tags


        Web Application Firewall Settings

       

     

  • Via additional Apache directives (Linux only)

    Note: This solution is intended for Plesk administrators only.

    1. Log in to Plesk.

    2. Go to Domains > example.com > Apache & nginx Settings.

    3. Create a custom Apache directive and put it into the Additional directives for HTTP/HTTPS fields. In the following example, rules with IDs 340162 and 340163 will be disabled:

      Note: It is possible to specify more than one RuleID. Add another line with RuleID on a new line.

      CONFIG_TEXT: <IfModule mod_security2.c>
      SecRuleRemoveById 340162
      SecRuleRemoveById 340163
      </IfModule>

      OR

      CONFIG_TEXT: <IfModule mod_security2.c>
      SecRuleRemoveById 340162 340163
      </IfModule>

 

Disabling rules server-wide 

 

  1. Log in to Plesk.

  2. Go to Tools & Settings > Web Application Firewall (ModSecurity) > Switch off security rules.

  3. Switch off rules using one of the following ways:

    • By rule IDs. Add IDs from the error message to the Security rule IDs field as shown on the following picture (Click to enlarge) and apply the changes.

      Note: If there are several rule IDs, put each on a new line.


      Web Application Firewall Settings

    • By rule tags. Add rule tags from the error message from Active to Deactivated as shown on the following picture (Click to enlarge) and apply the changes.


      Web Application Firewall Settings

 

Comments

1 comment

Sort by Date Votes
  • Avatar
    Pascal Devif (Edited )

    Hi,
    Ok thx.
    If you want to disable a rule for a specific folder use this :

    <IfModule mod_security2.c>
        # General rules
        SecResponseBodyLimit 536870912
        SecRuleRemoveById 999777
        # A comment
        <Directory /var/www/vhosts/domain.tld/httpdocs/yourfolder>
            SecRuleRemoveById 999888
        </Directory>
    </IfModule>

    Replace domain.tld and yourfolder with correct informations for you ...

    0
    Comment actions Permalink

Please sign in to leave a comment.

Have more questions? Submit a request

Related articles