Wish List (Please post your wishes here)

[webjive]

I put this into the regular forum but, MosSecurity cluster management!

https://forums.comodo.com/free-modsecurity-rules-comodo-web-application-firewall/clustering-and-management-t108000.0.html

[giggidy]

Webmin please!

[plusplus]

Will be great to have a button to list specifically in which domains and users are disabled which rules...the same function as the "Show Map" button in CMC.
Also a way to disable rules by cPanel user instead of domain, many times users have many domains or subdomains and we should go and disable one by one in the user domain.

Thanx!

[rogerpec]

Hi. I´m a Centos Cpanel user. An admin with some dev skills but not a developer. Comodo WAF has very good rules and the cpanel plugin is the best, really.

Could be better with more specific rules against RAVIJ sql injections and other similar programs. Todays I receive more than 20k sql injections daily, in url and forms in my server. I installed comodo rules today but didn't catch these kind of atack. Instead, Owasp can catch a lot but all of us know about the hard work to eliminate false positives from there.

This is my suggestion.

Comodo WAF is very very practical.

All the best!

[mpattman]

Please could we have a webmin / virtualmin plugin,

Thanks,

[w-e-v]

Please, a plugin for ISPConfig!

[naja7host]

i want to see a rule for scan uploaded files via php  form with clamav or maldet  .

[xanubi]

Different Forums.

Since COMODO is for:
nginx
LiteSpeed
Apache

I would sugest to have 3 separated sub-forums for each webserver.
Or create forum rules, where each message should have the webserver first in the title, like this:

"Litespeed: Problems error 500"

[xanubi]

On the WHM Plugin, have an option to activate or deactivate Mod Lua.

[Hedloff]

Sucuri has a pretty nice vulnerability database that you can use here:
https://wpvulndb.com/

As more and more customers use Wordpress it would be great if Comodo can implement more rules for Wordpress in the future.

[Hedloff]

Is this something you can implement as a rule:
http://www.incapsula.com/blog/semalt-botnet-spam.html ?

[webwzrd]

I found some good rules for blocking semalt and buttons plus more here:

https://github.com/Flameeyes/modsec-flameeyes

In particular, copy from the rules folder flameeyes_30_refererspam.conf and flameeyes_bad_referrers.data

Be careful what else you copy over. I first put everything in my modsecurity.d directory and it ended up giving everyone a 403 when viewing sites on my server. Not sure yet which rule did it.

It would be great if similar rules could be included here!

[brijendrasial]

Plugin for http://centos-webpanel.com/ 

[MikeFrizz]

Hi,
I want a webmin plugin. Allright. I can see there is a directory called webmin. I copied the content in the plugin path of webmin and renewed the available modules information, but nothing changed.

So I think the module is not working yet. But in the near future?

Mike

[oleg.tsygany]

Hi Mike

We have done some Webmin research but it's not active in current plugin version.
Webmin plugin will be fully functional in nearest release (2.9) scheduled on next Tuesday.

Best regards, Oleg