Portal Home > Knowledgebase > Articles Database > Atomicorp (ASL) for shared hosting
Atomicorp (ASL) for shared hosting
| Posted by THCServers, 09-24-2014, 02:53 PM |
| Hello,
Wanted to know if someone uses Atomicorp (asl) modsec rules for shared hosting services. Is it making more problems then it resolves? Currently we started testing this on one of our servers used for shared hosting and got lots of False Positives and was wandering if we should keep it or go back to configserver . Any suggestions ?
|
| Posted by TrentaHost, 09-24-2014, 02:59 PM |
| We use it on our servers too and i'm debating this also... nonetheless you can disable the rules with false positives or report it to ASL from within the GUI and it will open a support ticket between you and their staff to resolve.
30018? is that the rules giving you issues?
|
| Posted by THCServers, 09-24-2014, 03:13 PM |
| Thanks for the reply!
We had some issues with rules: 300080 and 341146, also we have disabled them but only for the domain that the owner reported the errors. We are still waiting for other complaints from our clients but i am afraid that clients will leave us because they will think the servers have downtime when they get banned ...
|
| Posted by TrentaHost, 09-24-2014, 03:38 PM |
| MY exact thought when I first started with ASL, but it actually dropped my server loads a lot.. got rid of all the negative forum spam traffic... you can click on the rules and you do have the ability to read up more on each specific rule.
|
| Posted by THCServers, 09-24-2014, 04:08 PM |
| yes the server load dropped and spam traffic is almost 0 but, the service is good so far ... but after we will implement those modsec rules on all our servers i think we will notify the clients about the possible errors with a newsletter, also for the new clients we will inform them in the welcome email. I think this is the best solution to avoid any client loss.
|
| Posted by THCServers, 09-24-2014, 07:27 PM |
| How do you you fight spam ? with configserver lfd sent your an email when a user started a spam with ASL you don't get a notification about spam sent. Did you solve this issue ?
|
| Posted by TrentaHost, 09-24-2014, 07:32 PM |
| We still use CSF Mail Queues, but we have 24/7 in-house staff that monitor all our loads.. everything from CloudLinux to Litespeed. But, that is a good question... we don't get clients who send outgoing spam on our shared hosting (we can thank our extensive fraud checking), the most "spam" we get sent from our servers are the forums with the spammy signups and the automatic forum email that get's sent. But after adding ASL we do not see those anymore...
ASL, DDOS protection will not work for spoofed attacks... unless the attack is coming from an IP making a lot of connections then only it will block.. but for all the other stuff it' a good one fix all starting solution.
|
| Posted by THCServers, 09-24-2014, 08:09 PM |
| Do you get many false-positives on ASL ?
|
| Posted by TrentaHost, 09-24-2014, 09:31 PM |
| We used too on different rules then the ones you listed but we tweaked it and after that it's all good It was only 2 rules if I remember correctly. There might be more, but our techs handle all of that.
+ The ASL team is always read to assist accordingly.
|
| Posted by edigest, 09-24-2014, 09:59 PM |
| No reason you can't use configserver and mod_security.
I use Atomic rules on some servers; Comodo on others. Both have their issues. The 341146 rule mentioned earlier is a problem but any "generic" rule should be monitored closely.
The most important thing, regardless of which rule set you use it to be judicious. You don't have to install all of them. ;^)
|
| Posted by THCServers, 09-24-2014, 11:02 PM |
| Do you work with a tech company or you just have your own techs?
|
Add to Favourites 
Print this Article
Also Read
