@sandeep I have just written the necessary data through your profile chat.
Hi @sandeep, I've got something else today, the server is running and working like a charm, but when I install ModSecurity and enable OWASP or COMODO rules, if I try to work in the site everything stops working properly... First 403, then Uploading files..., then database migration..., then wordpress...
What I did was to to white list some of the rules I was finding in ModSecurity log by its ID, for example:
SecRuleRemoveById 980130 SecRuleRemoveById 949110 SecRuleRemoveById 941100 SecRuleRemoveById 911100 SecRuleRemoveById 920350 SecRuleRemoveById 913100 SecRuleRemoveById 920280
I haven't even started to work full on the site, I'll I have been doing is setting it up and all these trouble......!!
My real question is how can I better handle ModSecurity, so all my sites don't get all these false positive?? is there a known false positive list, just to add and let it be?? Can I just white list IP's, my IP and the servers IP maybe??.
Thanks in advance.
PS (IT'S UNINSTALLED FOR NOW..!!)
We work with the rules of comodo and what we do is teach customers to disable rules that affect them. So far we have no problems and they are managing themselves
Module IPv6: https://github.com/coriaweb/cwpipv6
I am attaching what we have programmed so far, in case it can be useful to the CWP team to speed up the implementation.
We have had it down for a while, because our provider dropped the IPv6 connection, so we will restart this system.
I put it if you want to review it and it can be useful for someone or even to receive improvements from you.
I found a bug in a new installation on Centos 8, it's silly, but in case it helps to remove the warning.
The thing is that when installing from 0 with everything updated, it still shows an alert that there is 1 update:
If you click and go, it shows this:
It's just in case it can be corrected.
I'm back with news!
After trying all these days, it seems that the web is working properly.
Thank you very much from your fans! P hahahaha
@sandeep It has worked for me. Thank you!
@legend For what you say, we use the "staging" option ( Image: https://i.gyazo.com/90db15d2e23bc53b72ccf1aae457f03f.png ) from softaculous. Maybe you could be interested, anyway see what @Sandeep says