Working with ModSecurity

All shared and reseller web hosting accounts come enabled with mod_security.  Mod_security is a "firewall" for your website and helps prevent people from compromising your website.  Please keep in mind that it's still required for you to keep your scripts up to date, mod_security will not block every hack attempts, only commonly used ones.  If you are seeing a "406 Error" that is related to a mod_security block.

Just like in any virus or firewall software, there can be false posiitves and depending on the way you have your site configured or the scripts you use, mod_security might interfere with your website.  You have the option to disable mod_security if it will not work with your website, however we highly recommend keeping it enabled so your website(s) is protected.

There are two ways to disable mod_security.

  1. Recommended: Log into cPanel and click on the ModSecurity icon and then click on the 'Disable' button on the top of that page. 
  2. Advanced Users: Edit the .htaccess file in public_html and add SecFilterEngine Off to the top of that file.

Was this answer helpful?

 Print this Article

Also Read

My site is listed as an attack page?

When visiting your website, if you receive an error stating it's an attack page, that means that...

How long does it take for my WHOIS privacy to be enabled?

At this time, WHOIS Privacy is not an instant change.    When you request WHOIS privacy, it goes...

Adjusting PHP Memory settings

To change the memory_limit for PHP, please follow these steps:- Log into cPanel.- Find and click...

I get weird characters on my WordPress blog

If you are using SuperCache with Wordpress, you need to make sure you disable compression or else...

How do I configure my MySQL databases?

Please view this video tutorial: http://www.cpanel.net/media/tutorials/addmysql.htm