Recent Posts
11
Mod_Security / Re: atomic crop. free waf rules set
« Last post by zeejdeej on January 31, 2026, 06:32:55 PM »i know what you mean here but what the point of enabling OWASP latest rules with default setting when it blocks all my hosted wordpress e-commerce website 
, there must be a better solution to cater this issue. why comodo waf rules dont blocks same e-commerce websites and do blocks many other fake or hacking attempts. kindly enlightened me as i am a novice thats why try AI to help me solve this issue.
, there must be a better solution to cater this issue. why comodo waf rules dont blocks same e-commerce websites and do blocks many other fake or hacking attempts. kindly enlightened me as i am a novice thats why try AI to help me solve this issue.12
Mod_Security / Re: atomic crop. free waf rules set
« Last post by Starburst on January 31, 2026, 06:13:07 PM »Ah, I'm not a Sys Admin and don't know what I'm doing, so let me use ChatGPT... 
Thanks for the laughs...
And the basic security holes that ALL hackers use, that AI just opened your server to...
Using that guide, you might as well just uninstall ModSecurity...
Thanks for the laughs...
And the basic security holes that ALL hackers use, that AI just opened your server to...
Using that guide, you might as well just uninstall ModSecurity...
13
Mod_Security / Re: atomic crop. free waf rules set
« Last post by zeejdeej on January 31, 2026, 04:56:22 PM »actually OWASP latest waf rules are good enough but have too many false positives for wordpress specially e-commerce website and as soon as i enable them in my cwp pro all my hosted websites are blocked. i found a step by step fine tuning procedure after enabling OWASP latest waf rules but i need your help to safely test and implement it in cwp pro . if it works find cwp admins should implement it for all in cwp updates so everyone can benifit out of it. this mentod surly eliminate the false positives being triggered for e-commerce wordpress and related websites so its worth a try.
have a look at he below guide i created using chat gpt for resolving false positives in OWASP latest rules along with CrowdSec for hardening server security for free.
https://chatgpt.com/canvas/shared/697d55c97da081919e32485682394307
have a look at he below guide i created using chat gpt for resolving false positives in OWASP latest rules along with CrowdSec for hardening server security for free.
https://chatgpt.com/canvas/shared/697d55c97da081919e32485682394307
14
Mod_Security / Re: atomic crop. free waf rules set
« Last post by zeejdeej on January 31, 2026, 04:43:23 PM »once i update mod security to v 2.9.12 do i have to do any further configuration in cwp pro to use the latest updated version of OWASP waf rules ? or cwp will update and use OWASF rules automatically?
15
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by zeejdeej on January 31, 2026, 04:41:25 PM »no i am taking about this :
https://atomicorp.com/free-modsecurity-rules/
https://atomicorp.com/free-modsecurity-rules/
16
CentOS 7 Problems / XML post request 413 Request Entity Too Large error
« Last post by TheDebugger on January 31, 2026, 03:17:41 PM »Good day everyone,
Am creating an api server but I am running into a problem.
As soon as I send an xml larger than 1 mb, the server gives the error "413 Request Entity Too Large error".
I'm using the mode “Nginx + Apache php-cgi/suphp Performance”
In the error log of Apache it says: POST /api/planning/BurgerMarineForwarding?id=64340 HTTP/1.1" 413 316 "-" "3PL%2bSystem/27.3.131118.0"
/etc/nginx/nginx.conf:
client_header_timeout 3m;
client_body_timeout 3m;
client_max_body_size 256m;
client_header_buffer_size 4k;
client_body_buffer_size 256k;
large_client_header_buffers 4 32k;
/usr/local/php/php.ini:
upload_max_filesize = 50M
max_file_uploads = 20
post_max_size = 50M
max_execution_time = 600
max_input_time = 600
memory_limit = 256M
Am creating an api server but I am running into a problem.
As soon as I send an xml larger than 1 mb, the server gives the error "413 Request Entity Too Large error".
I'm using the mode “Nginx + Apache php-cgi/suphp Performance”
In the error log of Apache it says: POST /api/planning/BurgerMarineForwarding?id=64340 HTTP/1.1" 413 316 "-" "3PL%2bSystem/27.3.131118.0"
/etc/nginx/nginx.conf:
client_header_timeout 3m;
client_body_timeout 3m;
client_max_body_size 256m;
client_header_buffer_size 4k;
client_body_buffer_size 256k;
large_client_header_buffers 4 32k;
/usr/local/php/php.ini:
upload_max_filesize = 50M
max_file_uploads = 20
post_max_size = 50M
max_execution_time = 600
max_input_time = 600
memory_limit = 256M
17
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by overseer on January 30, 2026, 10:42:04 PM »You mean this?
https://atomicorp.com/atomic-waf-web-application-firewall/
It looks to be paid for their ModSecurity ruleset -- $22.50/month
https://www.atomicorp.com/amember/cart/index/product/id/123/c/?utm_medium=email&utm_source=sharpspring-email
https://atomicorp.com/atomic-waf-web-application-firewall/
It looks to be paid for their ModSecurity ruleset -- $22.50/month
https://www.atomicorp.com/amember/cart/index/product/id/123/c/?utm_medium=email&utm_source=sharpspring-email
18
Mod_Security / Re: atomic crop. free waf rules set
« Last post by overseer on January 30, 2026, 10:39:41 PM »https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-modsecurity-to-2-9-12-running-cwp-and-apache-on-almalinux-9/
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-to-4-22-0-running-cwp-and-apache-on-almalinux-9/
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-to-4-22-0-running-cwp-and-apache-on-almalinux-9/
19
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by zeejdeej on January 30, 2026, 05:01:45 PM »i think cwp should consider integrating atomic crop. free waf rules in cwp panel so everyone can benifit using it . manual installation and configuration have too many errors and conflicts as cwp got custom configuration only cwp panel admins knows best.
20
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by zeejdeej on January 30, 2026, 04:58:57 PM »my cwp pro is stuck at comodo waf v 1.240 i tried many times to update to v 1.241 manually by replacing the waf rules files but it revert back to v. 1.240 most probably due to cwp automatic update cron job.
i tried to switch to OWASP latest but as you said it had too many false positives and even after fine tuning i am not able to keep my hosted website unblocked.
i want to try atomic crop free waf rules as i heard they are good and atleast updates once a month and have lesser false positives? have you tried it? any suggestions
i tried to switch to OWASP latest but as you said it had too many false positives and even after fine tuning i am not able to keep my hosted website unblocked.
i want to try atomic crop free waf rules as i heard they are good and atleast updates once a month and have lesser false positives? have you tried it? any suggestions
