Recent Posts
11
Mod_Security / Re: atomic crop. free waf rules set
« Last post by zeejdeej on January 31, 2026, 04:43:23 PM »once i update mod security to v 2.9.12 do i have to do any further configuration in cwp pro to use the latest updated version of OWASP waf rules ? or cwp will update and use OWASF rules automatically?
12
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by zeejdeej on January 31, 2026, 04:41:25 PM »no i am taking about this :
https://atomicorp.com/free-modsecurity-rules/
https://atomicorp.com/free-modsecurity-rules/
13
CentOS 7 Problems / XML post request 413 Request Entity Too Large error
« Last post by TheDebugger on January 31, 2026, 03:17:41 PM »Good day everyone,
Am creating an api server but I am running into a problem.
As soon as I send an xml larger than 1 mb, the server gives the error "413 Request Entity Too Large error".
I'm using the mode “Nginx + Apache php-cgi/suphp Performance”
In the error log of Apache it says: POST /api/planning/BurgerMarineForwarding?id=64340 HTTP/1.1" 413 316 "-" "3PL%2bSystem/27.3.131118.0"
/etc/nginx/nginx.conf:
client_header_timeout 3m;
client_body_timeout 3m;
client_max_body_size 256m;
client_header_buffer_size 4k;
client_body_buffer_size 256k;
large_client_header_buffers 4 32k;
/usr/local/php/php.ini:
upload_max_filesize = 50M
max_file_uploads = 20
post_max_size = 50M
max_execution_time = 600
max_input_time = 600
memory_limit = 256M
Am creating an api server but I am running into a problem.
As soon as I send an xml larger than 1 mb, the server gives the error "413 Request Entity Too Large error".
I'm using the mode “Nginx + Apache php-cgi/suphp Performance”
In the error log of Apache it says: POST /api/planning/BurgerMarineForwarding?id=64340 HTTP/1.1" 413 316 "-" "3PL%2bSystem/27.3.131118.0"
/etc/nginx/nginx.conf:
client_header_timeout 3m;
client_body_timeout 3m;
client_max_body_size 256m;
client_header_buffer_size 4k;
client_body_buffer_size 256k;
large_client_header_buffers 4 32k;
/usr/local/php/php.ini:
upload_max_filesize = 50M
max_file_uploads = 20
post_max_size = 50M
max_execution_time = 600
max_input_time = 600
memory_limit = 256M
14
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by overseer on January 30, 2026, 10:42:04 PM »You mean this?
https://atomicorp.com/atomic-waf-web-application-firewall/
It looks to be paid for their ModSecurity ruleset -- $22.50/month
https://www.atomicorp.com/amember/cart/index/product/id/123/c/?utm_medium=email&utm_source=sharpspring-email
https://atomicorp.com/atomic-waf-web-application-firewall/
It looks to be paid for their ModSecurity ruleset -- $22.50/month
https://www.atomicorp.com/amember/cart/index/product/id/123/c/?utm_medium=email&utm_source=sharpspring-email
15
Mod_Security / Re: atomic crop. free waf rules set
« Last post by overseer on January 30, 2026, 10:39:41 PM »https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-modsecurity-to-2-9-12-running-cwp-and-apache-on-almalinux-9/
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-to-4-22-0-running-cwp-and-apache-on-almalinux-9/
https://starburst.help/control-web-panel-cwp/modsecurity-running-with-control-web-panel/update-owasp-crs-ruleset-to-4-22-0-running-cwp-and-apache-on-almalinux-9/
16
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by zeejdeej on January 30, 2026, 05:01:45 PM »i think cwp should consider integrating atomic crop. free waf rules in cwp panel so everyone can benifit using it . manual installation and configuration have too many errors and conflicts as cwp got custom configuration only cwp panel admins knows best.
17
Mod_Security / Re: MOD SECURITY issue on new CWP PRO INSTALLATION
« Last post by zeejdeej on January 30, 2026, 04:58:57 PM »my cwp pro is stuck at comodo waf v 1.240 i tried many times to update to v 1.241 manually by replacing the waf rules files but it revert back to v. 1.240 most probably due to cwp automatic update cron job.
i tried to switch to OWASP latest but as you said it had too many false positives and even after fine tuning i am not able to keep my hosted website unblocked.
i want to try atomic crop free waf rules as i heard they are good and atleast updates once a month and have lesser false positives? have you tried it? any suggestions
i tried to switch to OWASP latest but as you said it had too many false positives and even after fine tuning i am not able to keep my hosted website unblocked.
i want to try atomic crop free waf rules as i heard they are good and atleast updates once a month and have lesser false positives? have you tried it? any suggestions
18
Mod_Security / atomic crop. free waf rules set
« Last post by zeejdeej on January 30, 2026, 04:47:32 PM »hello,
does anyone know how to safely install free version of atomic crop. free waf rules set in cwp pro? i am currently using comodo waf rules but as you all know its discontinued in 2024 but they were the best with minimum false positives.
i tried to use OWASP Latest instead in my cwp pro but it has got so many false positives and blocks all my hosted website even after fine tuning. comodo waf rules works just fine but outdated
i was wondering if someone have used atomic crop. free waf rules as i can see its reviews are good so i wanna try it instead of comodo waf rules. atleast atomic crop. free rules are updated once a month or so ... have anyone tried it ? would appretiate if someone can post step by step guide to install atomic crop. free waf rules instead of currently installed comodo waf rules in my cwp pro to avoid conflits on a live server. thanks ..
does anyone know how to safely install free version of atomic crop. free waf rules set in cwp pro? i am currently using comodo waf rules but as you all know its discontinued in 2024 but they were the best with minimum false positives.
i tried to use OWASP Latest instead in my cwp pro but it has got so many false positives and blocks all my hosted website even after fine tuning. comodo waf rules works just fine but outdated
i was wondering if someone have used atomic crop. free waf rules as i can see its reviews are good so i wanna try it instead of comodo waf rules. atleast atomic crop. free rules are updated once a month or so ... have anyone tried it ? would appretiate if someone can post step by step guide to install atomic crop. free waf rules instead of currently installed comodo waf rules in my cwp pro to avoid conflits on a live server. thanks ..
19
PHP Selector / Re: Temporary downgrade of CWP pro to free version (emergency!)
« Last post by WISTFUL on January 30, 2026, 01:54:42 AM »I wouldn't trust AI to be your guiding light. For example, just at a quick glance, it is giving you the wrong ownership for the PHP socket. It should be:Oh! It was predictable.Code: [Select]chown root:nobody /opt/alt/php-fpm74/usr/var/sockets/<username>.sockAnd seemingly, it isn't telling you to initially create the <username>.conf file for each user account with the correct user & group within, as well as the correct paths? Even with CWP Pro, you have to manually create the php-fpm user conf files for each PHP version.
The AI has no knowledge of CWP and often uses cPanel addresses for it. The guide that was posted is the result of a long conversation about describing the problem and forcing chatGPT to use the official resources provided by the site https://control-webpanel.com, taking into account the experiences of users on its forum.
Quote
Any reason you're looking at php 7.4? Unless you have older WordPress themes/extensions that require it for full compatibility, it is EOL and probably contains security vulnerabilities. Look to 8.1 if you are using WP, or 8.3 if you need a fully supported PHP version.Unfortunately, a number of users are using old WordPress. Either I have to choose the middle ground or roll up my sleeves to dig up the dead WordPress...
If you revise the relevant guide based on your knowledge and experiences with CWP, it will be a unique reference to help me and others who encounter the same problem.
20
PHP Selector / Re: Temporary downgrade of CWP pro to free version (emergency!)
« Last post by WISTFUL on January 30, 2026, 01:34:40 AM »Cant you just login here https://support.centos-webpanel.com/index.php?rp=/login and put a bs ip in the box and when cwp does it's sweep your pro will be disabled then you can just use the free features only.When (in my particular situation) the internet is nationalized, there is no connection from the server inside the country to the outside (to access the CWP license server) and as a result, the license is automatically deactivated and CWP is downgraded to the free version. With the PHP‑FPM Selector disabled on the free version, we will receive a 503 error on PHP sites.
Or am i reading what you want wrong ?
This topic is to fix errors when downgrading CWP to the free version (for any reason) by manually installing Alt-PHP and allowing you to revert back to the pro version with the least possible challenge.
