client denied by server configuration

Paul Shultz

Paul Shultz

Active Member
Jun 5, 2018
30
12
8
Malebourne
cPanel Access Level
Root Administrator
I have been trying to resolve an issue for weeks now

Basically every WordPress site produces the error below when mod_security is enabled.

client denied by server configuration: /home/xxxxxx/public_html/wp-admin/admin-ajax.php, referer: https://xxxxxx.comu/wp-admin/post.php?post=14&action=edit

- When I disable mod_security at cPanel per site, it has no effect these still come up in the error log
- When I disable mod_security at WHM level both the Connections Engine and Rules Engine it resolves the issue.

I am using OWASP ModSecurity Core Rule Set V3.0

Attached is my Easy Apache Profile, any help will be greatly appreciated
 

Attachments

GOT

GOT

Get Proactive!
PartnerNOC
Apr 8, 2003
1,772
326
363
Chesapeake, VA
cPanel Access Level
DataCenter Provider
cPanelLauren

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,266
1,300
363
Houston
Hi @Paul Shultz

You might also want to identify the specific rules that are causing the issue and just disable those in WHM>>Security Center>>ModSecurity Tools -> Rules List

Something to keep in mind that while the Comodo ModSecurity Ruleset is great it is a 3rd party vendor and not something that cPanel is able to provide support for.

Thanks!
 
Paul Shultz

Paul Shultz

Active Member
Jun 5, 2018
30
12
8
Malebourne
cPanel Access Level
Root Administrator
Just an update on this. The problem does not seem to mod_security at all.

The profile I had, which is built on mod_http2, mod_proxy and mod_mpm_worker ...., simply causes many log entries as per below

[:error] [pid 7795:tid 47939049174784] [client xx.xx.xx.xx:50435] client denied by server configuration: /home/xxxxxx/

Little or no log entries to diagnose further, so have reverted back to non mod_http2. Its a pitty I wanted to make use of http2, but cant find a profile that works.
 
  • Like
Reactions: cPanelLauren
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
P AH01797: client denied by server configuration Web Servers and Applications 1
G Client denied by server configuration error Web Servers and Applications 3
A AH01797: client denied by server configuration Web Servers and Applications 6
postcd 403 error on various webpages, error log: "client denied by server configuration:" Web Servers and Applications 4
J Apache Log Issue: client denied by server configuration: /usr/local/apache/ Web Servers and Applications 0
Similar threads
AH01797: client denied by server configuration
Client denied by server configuration error
AH01797: client denied by server configuration
403 error on various webpages, error log: "client denied by server configuration:"
Apache Log Issue: client denied by server configuration: /usr/local/apache/
Top Bottom