Hello, Sometimes I use modsecurity rules in my virtual domains. It's a very powerful mod. I would like to add a geoip rule to my ispconfig.vhost but I found the next directive: Code: <IfModule mod_security2.c> SecRuleEngine Off </IfModule> Oops! Why ispconfig set to off the RuleEngine? Cheers!
Mod_security is disabled as some mod_security rules block ispconfig functions. ISPConfig is s server control panel, so it has to work with paths in system directories like /etc, but mod_security falsely detects this as attack and blocks ispconfig.