
I upgraded to WHM 76 and started having an issue where mod_security was blocking form submits that included code.
It seemed that whenever the server received a POST request that contained a lot of triangle brackets and matched some code rules/regex and took me to a 403 Forbidden error
This was an issue because I have a particular form in the Admin panel of our sites that allow the site administrator add Google Analytics or Google Tag Manager ads. I wrote my own special sanitization for these fields to prevent injection.
However, Apache still blocked these after my upgrade, so I went into WHM and looked at the "Hits List" in the Security Center => ModSecurity Tools.
I ended up disabling 6 rules here, and now it works. See screenshot.
The problem is, I feel like I "cured a headache with an axe" here. I didn't see a saw of modifying these rules in WHM to my own custom ones, moreover I'm not too familiar with writing secrules.
Based on my screenshot, what can be surmised about the importance of the rules I disabled? Is there any way to just exclude a particular POST request or whitelist the one form where I want to do this?
WHM/Cpanel version 76.0.20
Last edited by a moderator: