Knowledge Base

ModSecurity’s ruleset is changed automatically from Atomic Advanced to Custom when Imunify360 is installed

Symptoms

Atomic Advanced ruleset in Plesk is automatically changed to Custom;
The following content could be found in /etc/httpd/conf/modsecurity.d/rules/custom/RELEASE:
```
{
... 
"vendor": "Imunify360",
... 
}
```
Imunify360 can be presented on the server.

Note: Imunify360 can be installed not via Plesk

Cause

A conflict between Imunify360 and Atomic Advanced rulesets.

If Imunify360's custom ruleset is off, it loses a significant part of the functionality, and can’t fully protect the server. So the ModSecurity is auto-switched to Imunify360‘s Custom ruleset upon scheduled automatic updates of Imunify360. This is the expected behavior.

Resolution

As ModSecurity in Plesk can’t handle two independent rulesets, it is possible to use only one of them.

So only one product should be installed (Atomic Advanced or Imunify360).

Related Posts

My Plesk Update Delivers Multi-Server Management and More

Get Your Hands on Plesk Extensions and Toolkits This ‘HoliDeals’ Season (Part 1)

Software Tools to Prevent Attacks on Servers and Sites

Knowledge Base

Can’t login to WordPress from Plesk dashboard

Unable to initialize PostgreSQL database in Plesk: start service postgresql failed psql: could not connect to server:

WordPress update via Smart Update fails in Plesk: Smart Update was unable to correctly clone your website for further analysis

Unable to access Plesk: “The file /opt/psa/admin/htdocs/application.php is part of Plesk distribution. It cannot be run outside of Plesk environment.”

Hosting Wiki