Failed to update the ModSecurity ruleset: Authorization failed attempting to download an update

Created:

2016-12-12 03:42:27 UTC

Modified:

2017-08-08 13:25:06 UTC

0

Was this article helpful?


Have more questions?

Submit a request

Failed to update the ModSecurity ruleset: Authorization failed attempting to download an update

Applicable to:

  • Plesk 12.5 for Linux
  • Plesk 12.0 for Linux
  • Plesk Onyx for Linux

Symptoms

Unable to activate/reinstall ModSecurity component or enable "tortix" ruleset with one of the following errors:

Error: Failed to update the ModSecurity rule set: modsecurity_ctl failed:
gpg: key 4520AFA9: "Atomicorp (Atomicorp Official Signing Key) <support@atomicorp.com>" not changed gpg: Total number processed: 1 gpg: unchanged: 1 gpg: Signature made Thu Nov 5 10:06:20 2015 EST using RSA key ID 1111AAAA gpg: Good signature from "Atomicorp (Atomicorp Official Signing Key) <support@atomicorp.com>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: XXXX TERM environment variable not set. aum failed with exitcode
stdout: Checking versions ... ASL version is current:�[75G[�[1;31m�[1;32mPASS�[0m�[0m] Authorization failed attempting to download an update. The username or password may be invalid, or your license may be expired. Please log in to the License Manager at https://www.atomicorp.com/amember/member.php and verify your account. Further information may be found at: https://www.atomicorp.com/wiki/index.php/ASL_FAQ#HTTP_Error_401:_Authorization_Required.

Or:

Syntax error on line 39 of /etc/apache2/modsecurity.d/rules/tortix/modsec/98_asl_scanner.conf:
Invalid command 'SecTmpSaveUploadedFiles', perhaps misspelled or defined by a module not included in the server configuration
apache2.service: control process exited, code=exited status=1
Failed to start The Apache Webserver.

Also, if verify license at https://www.atomicorp.com/amember/member.php the following error is shown:

"Active Licenses: You have no active licenses".

However, Tools & Settings > License Management > Additional License Keys contains paid license "Security Core for VPS with Complete Atomicorp ModSecurity Rules (Security Pack)"

Cause

Corrupted installation of aum package. As a result, the license was not uploaded to the Atomicorp website.

Resolution

  1. Back up the content of the following directories and remove them:

    /etc/asl/*
    /var/asl/*
    /etc/httpd/modsecurity/rules/*
  2. Remove ModSecurity component using Plesk installer.

  3. Check whether aum package was removed. If not, remove it manually:

    # rpm -e --nodeps aum-4.0.19-37.el7.art.x86_64
  4. Make sure that ModSecurity license is updated in Tools & Settings > License Management > Additional Licenses > Retrieve

  5. Install ModSecurity using Plesk installer.

  6. Enable Atomic Professional ModSecurity ruleset under Tools & Settings > Web Application Firewall (ModSecurity)

  7. Make sure that "tortix" rules appeared in /etc/httpd/conf/modsecurity.d/rules/ directory. If not, update the ruleset:

    # /usr/local/psa/bin/sw-engine-pleskrun /usr/local/psa/admin/plib/DailyMaintainance/script.php –f UpdateModSecurityRuleSet
Have more questions? Submit a request
Please sign in to leave a comment.