As a Server Admin, I'd like for the mlogc binary to be included with EA4. This will provide the ability to have central log location for Modsec across my servers.
This request was included in today's easyapache update!
I have numerous servers using EA3 that were configured to use mlogc (as included/compiled with EA3) and report to an auditconsole server. I'd like to continue doing this with EA4. It's proven very useful for threat intelligence and pruning false positives. It would be nice to know if there are currently any limitations preventing mlogc, as overall I really like EA4's RPM based approach.
Our EasyApache team is planning to get this added in a future version of EasyApache 4. Once it gets released, we'll be back to let everyone know!
We use mlogc on all our cPanel servers to collect and analyze ModSecurity actions.
The absence of mlogc EasyApache4 it is one of the reasons why we have not migrated to the EasyApache4.
Good to hear I'm not the only one! I've just switched from using auditconsole to an ELK stack for collection. Anxiously awaiting the mlogc bin to be included with easyapache again.
Comments have been locked on this page!