Add support Comodo ruleset fo ModSecurity 3.0(Nginx)
At the moment it is not possible to use the Comodo ruleset with ModSecurity 3.0(Nginx).
Due to this xmlrpc.php brute force for WordPress is not protected, which is allowing Plesk server to be vulnerable to xmrlpc.php attacks
3
votes
Plesk Tech Support
shared this idea
Starting from Plesk 18.0.45 version https://docs.plesk.com/release-notes/obsidian/change-log/#plesk-18045,
the nginx ModSecurity ruleset from Comodo in now available in Plesk.
--AA
-
Cool Dark
commented
It would be very helpful to have more than only the OWASP ruleset for Nginx.