Unfortunately, when Apache includes conf.d/*, the "c" in cacti.conf
comes before "m" in mod_security.conf. This means we can't use the
IfModule directive here to detect the installation of mod_security.
Remove the IfModule section, and just provide instructions to users.
Users will have to manually un-comment the two mod_security overrides.
(Better than nothing.)
mod_security blocks a cacti upgrade procedure. Override and document
the two rules that cause problems. This could probably be tightened
down to apply only to the "install" directory.