This is an exclusive! and free! add-on product for cPanel/WHM. The product provides you with an interface to the cPanel mod_security implementation from within WHM.
With ConfigServer ModSecurity Control you can:
- Disable mod_security rules that have unique ID numbers on a global, per cPanel user or per hosted domain level
- Disable mod_security entirely, also on a global, per cPanel user or per hosted domain level
- Edit files containing mod_security configuration settings in /usr/local/apache/conf
- View the latest mod_security log entries
Requirements
- Apache v2+
- mod_security v2.5+ installed via Easyapache
- A set of mod_security rules each of which uses a unique ID
A recommended selection of rules can be obtained from ModSecurity Core Rule Set Project and Got Root. Care should be exercised with these rulesets as they can increase server resource usage by Apache child processes significantly.
This utility uses concepts explained in this section of the cPanel documentation.
Download
The latest version of cmc can be downloaded here: cmc.tgz
1. Upload the cmc.tgz file to your server 2. Untar the distribution: tar -xzf cmc.tgz 3. cd into the directory created and run the install script: cd cmc/ sh install.sh 4. Login to WHM and scroll to the bottom of the left hand menu and you should see "ConfigServer Mod Security" If you want to uninstall, simply: rm -fv /usr/local/cpanel/whostmgr/docroot/cgi/addon_cmc.cgi rm -fv /usr/local/cpanel/whostmgr/docroot/cgi/cmcversion.txt rm -Rfv /usr/local/cpanel/whostmgr/docroot/cgi/cmc/
