Knowledge Base

Outdated WAF ruleset is reported in the Imunify360 dashboard in Plesk

Symptoms

The warning about outdated WAF ruleset is shown in Imunify360 dashboard in Plesk

The proper ruleset is installed

# plesk sbin modsecurity_ctl -L --enabled
custom

After executing the following command the version is not changed:

# imunify360-agent update --force modsec-rules

# cat /etc/httpd/conf/modsecurity.d/rules/custom/VERSION
4.92

Cause

A 3rd-party rule set is being used by ModSecurity, rather than the custom rule set from Imunify360.

Resolution

1. Connect to the server via SSH

2. Remove the current ModSecurity ruleset

# plesk sbin modsecurity_ctl --disable-all-rules --ruleset tortix

3. Reinstall Imunify360 ModSecurity ruleset

# imunify360-agent install-vendors

See Also

Imunify360 documentation on ModSecurity and Plesk

Related Posts

Exploring Plesk’s Added Value Solutions So Far in 2023

Unveiling Sitejet Builder: The Perfect Match for Your Effortless Website Creation Needs

Dynamic List vs. Active List: A Comprehensive Comparison – Unveiling the Ultimate Winner!

Knowledge Base

Error in Plesk during the ClamAV update: downloadPatch: Can’t apply patch

How to install WordPress with custom settings on Plesk server?

WAF button not visible in the Security category for Customer and Reseller domains

Unable to install Prestashop with Spanish language on Plesk server: Non-zero exit status returned by script

Hosting Wiki