Upgrading ModSecurity from 2.9.6 to Latest Version on OpenLiteSpeed 1.7.19 (Rocky 8 OS)

[krrish]

Hello OpenLiteSpeed Support,
I am currently running OpenLiteSpeed version 1.7.19 on a server with Rocky 8 OS. The server has ModSecurity version 2.9.6 installed.
I would like to upgrade ModSecurity to the latest version in order to use the OWASP Core Rule Set (CRS) and take advantage of the latest features and improvements.
Could you please provide guidance on the best practices for upgrading ModSecurity to the latest version on OpenLiteSpeed 1.7.19? Specifically, I am looking for instructions on:

1. How to properly remove the current version of ModSecurity.
2. The steps to install and configure the latest version of ModSecurity.
3. Any considerations or configurations needed to ensure compatibility with OpenLiteSpeed.
4. How to integrate and configure the OWASP Core Rule Set (CRS) with the new ModSecurity version.

Thank you for your assistance.

 

[Cold-Egg]

The ModSecurity module with OLS is probably optimized. Check https://openlitespeed.org/kb/openlitespeed-modsecurity-module/ if you want to reinstall the module or setup OWASP CRS, there should be no special settings for it.

 

[krrish]

I have ModSecurity version 2.9.6 and OWASP must installed on ModSecurity v3
my problem is if I active mode security lsws process stopped
so how can i upgrade ModSecurity to v3.x
or if I can't upgrade to ModSecurity v2.9.6
how can I disable OWASP CRS
because I used this command in the topic
bash <( curl -k https://raw.githubusercontent.com/litespeedtech/ols1clk/master/ols1clk.sh ) --owasp-enable

 

[Cold-Egg]

modsecurity + OWASP should not cause the lsws process stopped to work.

For the newer modsecurity module, better to wait OLS release it.

To disable it, use the following command:

bash <( curl -k https://raw.githubusercontent.com/litespeedtech/ols1clk/master/ols1clk.sh ) --owasp-disable