Enable Mod_Security for only one website

apache-2.2 mod-security

Is there a way to dis-able mod-security for all websites? except one? i have more than 500 websites hosted, only want to turn it on for one website, which is having attacks on it.


Solution 1:

Well I suppose it is possible if you enable the configuration for mod security either in .htaccess or in the virtual host apache configuration for that particular domain using something like this : 

<IfModule mod_security2.c>
    SecRuleEngine On
    ...... (any other directives you might want to override from the defaul conf)
</IfModule>

Also in /etc/httpd/conf.d/mod_security.conf, or wherever the defaul config is stored, set SecRuleEngine Off but leave the other directives in place.

Related

How do I enable PHP’s flush() with nginx+PHP-FPM?
How to restrict ssh tunnel authority to a certain port?
Is it possible to change filesystem properties for an existing ZFS pool?
Enable & Disable Log-watch feature in Linux server [closed]
Configure apt to use proxy in vagrant box
Why does DHCP have fixed client and server port numbers
Cisco console, USB and RJ45?
Where is the runuser command on Ubuntu Server?
Extending partition on linux gparted but not more space in the vm
When importing CSV into R how to generate column with name of the CSV?
Map Markers with text in Google Maps Android API v2
How to create a notification in swing