Server Software and Configuration Services
cPanel ModSecurity Vendor for cxs
We have created a ModSecurity Vendor that you can now use to import the cxs ModSecurity rules. To use this new feature you need to:
1. Remove the cxs ModSecurity rule block from /usr/local/apache/conf/modsec2.user.conf
2. Use the inbuilt cPanel ModSecurity Vendor Rules mechanism by either:
a) WHM > ModSecurity Vendors > Add Vendor > Vendor Configuration URL:
https://download.configserver.com/waf/meta_configserver.yaml
Save and then restart httpd
or
b) Issue the following commands:
/scripts/modsec_vendor add https://download.configserver.com/waf/meta_configserver.yaml /scripts/modsec_vendor enable configserver
Then restart httpd
You can have the ConfigServer Vendor enabled along with any other Vendor that you may already be using.