Delete or Uninstall ModSecurity (mod_security)

ModSecurity is a application firewallOpen source that provides protection web pages hosted on the server. Basically, ModSecurity (mod_security) Monitoring si analyzes Real-time traffic HTTP and provides protection for a series of attacks that could occur on web pages.
ModSecurity can be installed and can be found on web server either as module Apache Web Server (Mod_security) or as a standalone application.
Even if it is designed to protect web applications, ModSecurity can also create a number of problems. The most common problem with mod_security is the ban on access to certain web pages by users or robots. indexing (gender Googlebot). can generate errors false-positive gender: 403 HTTP (Forbidden or Access Denied), 412 HTTP (preconditioned Failed), 406 HTTP (Not Acceptable) or errors sessions login / authentication web site.

ModSecurity is a good Web application firewallBut it must be configured manually according to the needs and specific website or blog that protects you. If you use a server with Apache mod_security and do not want to complicate the config, then you disable ModSecurity to a site by using File .htaccess placed in the root (the root) website. You need to add the. Htaccess following lines:

SecFilterEngine Off
SecFilterScanPOST Off

These lines placed in the root of a Web site will disable the ModSecurity (mod_security) for the whole field.

Uninstall or Delete the ModSecurity module (mod_security) from Apache.

Mod_security usually found in folder config Apache. On most web server it is located in / Usr / local / apache / config.

modsec2

Before proceeding to manually delete the application files (in our case it is the files that start with "modsec2. ”), We will have to remove the lines below from httpd.conf.

LoadModule security_module modules/mod_security.so
Include "/usr/local/apache/conf/modsec2.conf"

After you save the changes made in the httpd.conf, restart Apache Web Server.

/etc/init.d/httpd restart

Now you can delete files that start with "modsec2." from / usr / local / apache / config.

For servers that have installed WebHost Manager (WHM) the procedure to uninstall ModSecurity is even simpler. Go to cPanel / WHM Addon Modules and click Oneinstall on the mod_security module.

STEALTH SETTINGS - UNINSTALL & REMOVE ModSecurity (mod_security).

Founder and editor Stealth Settings, from 2006 to the present. Experience on operating systems Linux (in particular CentOS), Mac OS X, Windows XP> Windows 10 si WordPress (CMS).

How to » Linux » Delete or Uninstall ModSecurity (mod_security)
Leave a Comment