I was looking for easy to follow mod_security ruleset setup instructions for a cPanel server and found the following website: http://www.ukhost4u.com/blog/248/configuring-modsecurity-with-atomicorp-free-rule-sets/
Currently I'm looking into implementing mod_security on all our apache servers. The installation on CentOS 5.5 comes directly with the
"Core Rule Set" by the mod_security devs (curiously Debian and Ubuntu do not carry these)
They also offer the Enhanced Rule Set for mod_security in a commercial package
I've pulled my finger out and installed mod_security to protect our WHMCS installation (a PHP based billing system) from some of the more obvious SQL injection attacks to try and minimise our susceptibility to being hit in the window of opportunity between a vulnerability becoming known and us finding out about it (at which point we deploy IP ACL or new mod_security rules as appropriate, and patch
I am trying to setup a web server running Apache + mod_fcgid + mod_security chroot enabled and having a real hard time to get this working. I have installed Apache from official CentOS repo, mod_fcgid and mod_security were installed from EPEL repo.
Everything seems to be working fine except PHP. When I try to execute PHP files, the server throws 500 - Internal Server Error.