OWASP Modsecurity CRS - How to add new rule? — CyberPanel - WebHosting Control Panel for OpenLiteSpeed
CyberLoader

OWASP Modsecurity CRS - How to add new rule?

edited March 2019 in Web Server
I enabled owasp, wordpress failed to add the port.
I need to add rule: REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
https://github.com/SpiderLabs/owasp-modsecurity-crs/blob/v3.2/dev/rules/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf

How do add?

Comments

  • In openlistespeed admin, go to server configuration -> modules -> mod_security

    Add a line for:
    modsecurity_rules_file /usr/local/lsws/conf/modsec/owasp/rules/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf

    This file already exists, it's just not part of the parameters.
  • @boon4376 This worked well. Thanks!

    Any chance you can help me with these WordPress rules?

    https://github.com/Rev3rseSecurity/wordpress-modsecurity-ruleset
Sign In or Register to comment.
CyberPanel Discord

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

In this Discussion