Test whether mod_security is actually working

Hosting, Linux / October 5, 2021 / ashishpsk / 0

curl -ks -o /dev/null -w '%{http_code}' "https://something.example.com/foo?username=1'%20or%20'1'%20=%20'"

If you get a 403, then ModSecurity is working as expected.

Mod_Security is enabled automatically after you select it and build Apache via EasyApache. Assuming no third-party applications are installed to manage it, you can manage its rules at:

“WHM >> Plugins >> Mod_Security”

You will typically see a “406” error code in the Apache error log when Mod_Security blocks a request.

ashishpsk

Latest posts

GRANT read only access to a PostgreSQL database for a user

In your terminal, login as the postgres user (for security reasons, the postgres user has no password. That’s...

Command to know TLS Version:

openssl ciphers -v | awk '{print $2}' | sort | uniq

For TLS 1.3:

openssl s_client...

Find Cause of Spam Source

Mass suspend or unsuspend mailboxes of a domain

Using the API, can help you quickly...

How can i disable MySQL strict mode ?

To Disable Strict Mode via SQL

mysql -u root -p -e "SET GLOBAL sql_mode =...

How to give a user permission to restart apache?

Using visudo, add the following to your sudoers file, replacing username with the proper...

MySQL SHOW USERS: List All Users in a MySQL Database Server

MySQL SHOW USERS: List All Users in a MySQL Database Server:

>mysql -u root -p
Enter...

Test whether mod_security is actually working

ashishpsk

Latest posts

GRANT read only access to a PostgreSQL database for a user

Command to know TLS Version:

Find Cause of Spam Source

How can i disable MySQL strict mode ?

How to give a user permission to restart apache?

MySQL SHOW USERS: List All Users in a MySQL Database Server

Leave a Comment

Leave a Reply Cancel reply

Test whether mod_security is actually working

Related posts

Latest posts

Leave a Comment

Leave a Reply Cancel reply

Search