discussion Guide Plesk Installing and Configuring ModSecurity on Plesk Panel – Complete Guide 2025

[CL4Y]

🔒 Installing and Configuring ModSecurity (Web Application Firewall) on Plesk Panel​

If you want to protect your website from malicious attacks, it’s highly recommended to install ModSecurity on your Plesk Panel.
ModSecurity is a Web Application Firewall (WAF) that works with Apache, Nginx, and IIS.
It effectively protects against OWASP threats such as SQL Injection and XSS attacks.

🚀 What is ModSecurity?​

ModSecurity analyzes incoming HTTP requests, detects suspicious activity, and blocks it automatically.
As a rule-based security system, it identifies potential attacks and prevents unauthorized access to your website.

---

✅ How to Install ModSecurity on Plesk Panel​

Follow these steps to easily install ModSecurity through your Plesk Panel:

⭐ Step 1: Install the ModSecurity Extension​

Log in to your Plesk Panel as an administrator.
From the left menu, navigate to Tools & Settings > Plesk, then click Updates.
In the opened window, select Add/Remove Components.
Under the Web Hosting section, check ModSecurity and proceed with the installation.

---

⭐ Step 2: Enable ModSecurity​

Once installed, go to Tools & Settings > Security and click Web Application Firewall (ModSecurity).
This section allows you to activate ModSecurity globally or per subscription.

---

⭐ Step 3: Configure ModSecurity​

Follow the steps below to properly configure ModSecurity:

• Web Application Firewall Mode: On
• Run Rules: Apache (ModSecurity 2.9)
• Rule Set: OWASP (Free)
• Configuration: Full

💡 Tip: For optimal protection, always keep your ModSecurity ruleset updated and monitor logs for false positives.

 

[CL4Y]

ModSecurity provides a powerful security layer for your web applications in Plesk Panel. It is very easy to install and, when properly configured, protects your site from cyber threats to a large extent.