Modsecurity basi rules fails to update on plesk 12.5 and 12

Community support for Plesk, CPanel, WebMin and others with insight from two of the founders of Plesk. Ask for help here! No question is too simple or complicated. :-)
TeleType
New Forum User
New Forum User
Posts: 1
Joined: Thu Dec 10, 2015 6:24 am
Location: Ariano Irpino

Modsecurity basi rules fails to update on plesk 12.5 and 12

Unread post by TeleType »

Hello there,

it seems that ASL included in Plesk 12.5 and 12 has a problem upgrading.
I get this error:
When using 'aum -u' on the CLI i get:

Code: Select all

Checking versions ...

Updating asl components
(this may take several minutes)
Updating ASL Core: successful [PASS]
Updating Web Application Firewall to 201512071312: updated [PASS]
-------------------------------------------------------------------------------
Errors were encountered:

L CODE SOURCE MESSAGE
- ---- ----------------------------- ------------------------------------------
2 2 c_modsec::apply_rules An error occurred attempting to read file
/var/asl/data/waf_groups
2 9901 ASLCommon::cmd_system ERROR: '/usr/sbin/apachectl -t >/dev/null
2>&1 (1)'
2 9901 ASLCommon::cmd_exec ERROR: '(1) /usr/sbin/apachectl -t 2>&1 --
[Tue Dec 08 13:10:46.964887 2015] [so:war
n] [pid 31916:tid 140019657013312] AH01574
: module unique_id_module is already loade
d, skipping||httpd: Syntax error on line 3
78 of /etc/httpd/conf/httpd.conf: Syntax e
rror on line 12 of /etc/httpd/conf.d/00_mo
d_security.conf: No matches for the wildca
rd '*asl*.conf' in '/etc/httpd/conf/modsec
urity.d/rules/tortix/modsec', failing (use
IncludeOptional if required)'
2 601 c_modsec::apply_rules There is a problem with the apache config:
[Tue Dec 08 13:10:46.964887 2015] [so:war
n] [pid 31916:tid 140019657013312] AH01574
: module unique_id_module is already loade
d, skipping; httpd: Syntax error on line 3
78 of /etc/httpd/conf/httpd.conf: Syntax e
rror on line 12 of /etc/httpd/conf.d/00_mo
d_security.conf: No matches for the wildca
rd '*asl*.conf' in '/etc/httpd/conf/modsec
urity.d/rules/tortix/modsec', failing (use
IncludeOptional if required)
2 601 c_modsec::apply_rules There is a problem with the apache config:
Rolling back to the previous update
2 9901 ASLCommon::cmd_system ERROR: '/bin/cp -af /var/asl/tmp/waf_rules
/* /etc/httpd/conf/modsecurity.d/rules/tor
tix/modsec>/dev/null 2>&1 (1)'
3 600 c_modsec::apply_rules Errors occurred with Apache
There are many topics related on plesk forum at http://talk.plesk.com/forums/plesk-12-x-for-linux.735/
This is mine:
http://talk.plesk.com/threads/error-wit ... ty.336154/

Do you have any suggestion?

Oto Tortorella
TeleType
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4149
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: Modsecurity basi rules fails to update on plesk 12.5 and

Unread post by mikeshinn »

What version of ASL do you have installed?
prupert
Forum Regular
Forum Regular
Posts: 573
Joined: Tue Aug 01, 2006 2:45 pm
Location: Netherlands

Re: Modsecurity basi rules fails to update on plesk 12.5 and

Unread post by prupert »

Word from Odin:
We just got information from Atomic that fresh Plesk ruleset is available and it can be updated by one of the following ways:
/usr/local/psa/bin/sw-engine-pleskrun /usr/local/psa/admin/plib/DailyMaintainance/script.php UpdateModSecurityRuleSet
`aum -u`

Afterwards, in order to remove error message you can switch modsecurity ruleset from Atomic to another provider and back to Atomic.
Lemonbit Internet Dedicated Server Management
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4149
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: Modsecurity basi rules fails to update on plesk 12.5 and

Unread post by mikeshinn »

ASL isnt included in Plesk. Only a very basic modsecurity ruleset.
prupert
Forum Regular
Forum Regular
Posts: 573
Joined: Tue Aug 01, 2006 2:45 pm
Location: Netherlands

Re: Modsecurity basi rules fails to update on plesk 12.5 and

Unread post by prupert »

It looks like the topic starter is talking about your Atomicorp basic rule set for mod_security included in Plesk.
Lemonbit Internet Dedicated Server Management
Post Reply