WebHost Manager gudeg 2011 12 29 11 01 27

Mengontrol Mod Security di CPanel dengan ConfigServer ModSec Control

Leave a Comment / Linux, Security, Tutorial / By

ConfigServer ModSec Control atau cmc adalah sebuah user interface yang digunakan untuk mengontrol Mod Security pada CPanel. Jika anda ingin me-whitelist sebuah rule maka anda biasanya harus masuk melalui ssh dan mengedit file confignya. Tetapi dengan ConfigServer ModSec Control anda bisa mengedit rules dari WebHosting Manager (WHM).
Untuk menginstall ConfigServer ModSec Control pastikan anda sudah menginstall Mod Security terlebih dahulu.
Setelah itu masuk ke console (melalui SSH) dan ketik perintah di bawah ini:

root@gudeg [/opt]# wget http://configserver.com/free/cmc.tgz
--20:01:55--  http://configserver.com/free/cmc.tgz
           => `cmc.tgz'
Resolving configserver.com... 85.13.195.235
Connecting to configserver.com|85.13.195.235|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 17,165 (17K) [application/x-tar]

100%[====================================>] 17,165        82.73K/s             

20:01:56 (82.56 KB/s) - `cmc.tgz' saved [17165/17165]

root@gudeg [/opt]# tar -zxcvf cmc.tgz 
tar: You may not specify more than one `-Acdtrux' option
Try `tar --help' or `tar --usage' for more information.
root@gudeg [/opt]# tar -xxvf cmc.tgz 
cmc/
cmc/cmcversion.txt
cmc/changelog.txt
cmc/cmc/
cmc/cmc/deliver.png
cmc/cmc/viewdelivery.png
cmc/cmc/plus.png
cmc/cmc/minus.png
cmc/cmc/cmq.js
cmc/cmc/delete.png
cmc/addon_cmc.cgi
cmc/install.sh
cmc/license.txt
cmc/INSTALL.txt
root@gudeg [/opt]# cd cmc
root@gudeg [/opt/cmc]# ./install.sh 
`addon_cmc.cgi' -> `/usr/local/cpanel/whostmgr/docroot/cgi/addon_cmc.cgi'
mode of `/usr/local/cpanel/whostmgr/docroot/cgi/addon_cmc.cgi' changed to 0700 (rwx------)
`cmcversion.txt' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmcversion.txt'
`cmc/' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmc'
`cmc/viewdelivery.png' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmc/viewdelivery.png'
`cmc/delete.png' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmc/delete.png'
`cmc/cmq.js' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmc/cmq.js'
`cmc/deliver.png' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmc/deliver.png'
`cmc/plus.png' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmc/plus.png'
`cmc/minus.png' -> `/usr/local/cpanel/whostmgr/docroot/cgi/cmc/minus.png'
ConfigServer Mod Security has been installed.

Selesai, sekarang anda bisa melihat di bagian plugins ada ConfigServer ModSec Control.

WebHost Manager gudeg 2011 12 29 11 01 27

Untuk me-whitelist rules per user tinggal klik user yang dimaksud lalu tekan tombol “modify user whitelist”. Masukkan nomor rulesnya sesuai dengan rules di konfigurasi modsec lalu tekan tombol “save whitelist for all username domains”
Atau jika anda ingin me-whitelist sebuah rule untuk semua user, maka tinggal masukkan nomor rulenya pada “mod_security rule ID list:” lalu tekan tombol “save global whitelist”

Related Posts

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.