cPanel & WHM Version 114 has been released, and brings a slew of great updates. Take a look at what is included, and then upgrade today!

Update ModSecurity Vendor OWASP to OWASP ModSecurity Core Rule Set (CRS) 3.1

Gregory Bezy shared this idea 4 years ago
Open Discussion

As a systems administrator, I would like the current mod_security ruleset to be updated to OWASP ruleset 3.1 so that I can benefit from the speed improvements, numerous false positives fixed, new protections against java injections and the new built-in exceptions for cPanel. This updated ruleset has been two years in the making and was released in November 2018.


------------------------------------------------------------------


Please update the OWASP ModSecurity Core Rule Set 3.0 at http://httpupdate.cpanel.net/modsecurity-rules/ which was released in November 2016 to the new 3.1 core rule set released in November 2018. https://github.com/SpiderLabs/owasp-modsecurity-crs/releases

Additional Information on all the changes and improvements: https://coreruleset.org/20181128/announcement-owasp-modsecurity-core-rule-set-version-3-1-0/

"A wee bit over 2 years in the making, this major release represents a big step forward in terms of capabilities, usability and protection."

Replies (1)

photo
2

Also, it would be nice to see in WHM the version of the rules for other vendors - like Comodo.

Leave a Comment
 
Attach a file