Hi,
I am using DirectAdmin Comodo plugin and I am getting this alert in cwaf → security engine :
“Custom Mod Security configuration found!
Press “Update config” button to update it with values from this screen.
After update, backup of current configuration could be found in: /etc/httpd/conf/extra/httpd-modsecurity.conf.custom”
This is my httpd-modsecurity.conf
LoadFile /usr/local/lib/libxml2.so
LoadModule security2_module /usr/lib/apache/mod_security2.so
# Default recommended configuration
SecRuleEngine On
SecRequestBodyAccess On
SecDefaultAction “phase:2,deny,log,status:406”
SecRequestBodyLimitAction ProcessPartial
SecResponseBodyLimitAction ProcessPartial
SecRequestBodyLimit 13107200
SecRequestBodyNoFilesLimit 131072
SecPcreMatchLimit 250000
SecPcreMatchLimitRecursion 250000
SecCollectionTimeout 600
SecDebugLog /var/log/httpd/modsec_debug.log
SecDebugLogLevel 0
SecAuditEngine RelevantOnly
<IfModule mod_ruid2.c>
SecAuditLogDirMode 1733
SecAuditLogFileMode 0550
SecAuditLogType Concurrent
SecAuditLogStorageDir /var/log/modsec_audit
</IfModule>
SecAuditLog /var/log/httpd/modsec_audit.log
SecUploadDir /tmp
SecTmpDir /tmp
SecDataDir /tmp
SecTmpSaveUploadedFiles on
# ModSecurity Core Rules Set and Local configuration
IncludeOptional /etc/modsecurity.d/*.conf.main
IncludeOptional /etc/modsecurity.d/*.conf
Why am I getting this alert ?
“After update, backup of current configuration could be found in: /etc/httpd/conf/extra/httpd-modsecurity.conf.custom”
I do update but I do not get any httpd-modsecurity.conf.custom file.
Thanks