Operating System & Version
Centos 7
cPanel & WHM Version
11.92.0

otakudes

Active Member
Jun 19, 2020
43
7
8
USA
cPanel Access Level
Website Owner
I have two sites I'm running suPHP on. One is a static site. I started getting a 403 error a few days ago. I have tried checking file permissions (folder 755, file 644), group permissions user:user. Everything looks okay. Nothing is showing up in my error log for this. I made some fatal changes on my .htaccess file to make sure error log is working. It is. Any ideas what I missed? I'm hoping something simple. I tried reloading a backup from a couple months ago and the error is still showing up

 

otakudes

Active Member
Jun 19, 2020
43
7
8
USA
cPanel Access Level
Website Owner
Yes. It doesn't look like error log is recording these. I do see a few 403 in the log though

Code:
[Wed Feb 17 18:30:20.914720 2021] [:error] [pid 9120] [client 171.25.193.20:21335] [client 171.25.193.20] ModSecurity: Access denied with code 403 (phase 2). Match of "rbl nxd
[Wed Feb 17 18:31:55.921580 2021] [:error] [pid 14492] [client 31.220.40.240:50748] [client 31.220.40.240] ModSecurity: Warning. String match "/.env" at REQUEST_FILENAME. [fil
[Wed Feb 17 18:31:55.990894 2021] [:error] [pid 9120] [client 31.220.40.240:50740] [client 31.220.40.240] ModSecurity: Access denied with code 403 (phase 2). Match of "rbl nxd
 

otakudes

Active Member
Jun 19, 2020
43
7
8
USA
cPanel Access Level
Website Owner
It's ModSecurity. I set Rules Engine to Do Not Process Rules and pages loaded again. I need to figure out why.

EDIT:
I disabled cPanels OWASP rules. ConfigServer has it's own. Maybe they were conflicting.
 
Last edited:
  • Like
Reactions: andrew.n