We are provisioning a new host and going through the install process for adding Comodo as a ModSecurity rule vendor in cPanel WHM. On August 8th it seems that an EasyApache 4 update patched ModSecurity to 2.9.2, but the Comodo YAML metadata only reports that it supports ModSecurity versions up to 2.9.1. Here is the error which now occurs when installing the Comodo ruleset:
API failure: The vendor metadata does not contain an entry for your version of ModSecurity, “2.9.2”. The only versions of ModSecurity this rule set supports are “2.7.5”, “2.7.7”, “2.8.0”, “2.9.0”, and “2.9.1”.
I believe the YAML data just needs to be updated to reflect the rule’s support for the new ModSecurity update.
Just touching back here to report that we have submitted a ticket with Comodo support to look into this issue. I’ll return here with any updates as we have them.
It looks like this issue not only causes a problem with new intstallations, but also prevents the vendor rules from being automatically updated:
[2017-08-15 02:43:36 -0400] warn [modsec_vendor] The system failed to update the vendor from the URL “https://waf.comodo.com/doc/meta_comodo_apache.yaml”: The vendor metadata does not contain an entry for your version of ModSecurity, “2.9.2”. The only versions of ModSecurity this rule set supports are “2.7.5”, “2.7.7”, “2.8.0”, “2.9.0”, and “2.9.1”. at /usr/local/cpanel/scripts/modsec_vendor line 168.