|
 ConfigServer Scripts Forum
|
|
|
|
Page 1 of 1
|
[ 4 posts ] |
|
| Author |
Message |
|
InetBiz
Junior Member
Joined: Mon Aug 31, 2009 9:16 pm
Posts: 5
|
 modsec2 exclusion rules Liquidweb says your exclusion rules are not correct.
Hello again,
Chris found the password he had changed it to again and updated billing back to that so I am able to log in again.
The LocationMatch you set up needs to be modified, I believe it needs to be changed to this:
<LocationMatch /*>
SecRuleRemoveById 300016
SecRuleRemoveById 300015
</LocationMatch>
Please let me know if you would like us to do this for you, apache will need to be restarted afterwords.
Sincerely,
---------
Michael Wineland
System Administrator
Liquidweb Inc.
|
| Mon May 03, 2010 10:13 pm |
|
|
|
chirpy
Moderator
Joined: Sat Dec 09, 2006 7:13 pm
Posts: 2522
|
Why? I need a technical explanation, because AFAIK the current setup is working without issue.
|
| Wed May 05, 2010 4:47 pm |
|
|
|
InetBiz
Junior Member
Joined: Mon Aug 31, 2009 9:16 pm
Posts: 5
|
This is a cpanel server it does use modsec2. the current script when it writes the exclusions were not being honored. I contacted Liquidweb and they evaluated your conf files and made corrections. They now work but not when your script updates them in a cpanel environment?
|
| Wed May 05, 2010 5:04 pm |
|
|
|
chirpy
Moderator
Joined: Sat Dec 09, 2006 7:13 pm
Posts: 2522
|
We're not able to recreate any problems with the way cmc writes the configuration files for ModSecurity v2+ so won't be changing anything without a technical explanation of any issues you have have had.
|
| Wed May 05, 2010 5:10 pm |
|
|
|
|
Page 1 of 1
|
[ 4 posts ] |
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
|
|