The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Mod Security blocks Lynx browser with 406 Not Acceptable

Discussion in 'Security' started by anoetic, Feb 9, 2008.

  1. anoetic

    anoetic Active Member

    Joined:
    Feb 5, 2006
    Messages:
    25
    Likes Received:
    0
    Trophy Points:
    1
    I've installed the default Mod Security rules and am receiving reports that websites cannot be viewed using the lynx browser. A 406 Not Acceptable error is generated. What is unacceptable is that lynx is being blocked. How do I fix this?
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,451
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Check your mod_sec logs for the error/rule being tripped would be a good place to start I think.
     
  3. anoetic

    anoetic Active Member

    Joined:
    Feb 5, 2006
    Messages:
    25
    Likes Received:
    0
    Trophy Points:
    1
    Even if I knew what rule was triggering the problem, I wouldn't know how to fix it. I really do not understand these rules. Besides, I truly think this is a bug. People do still browse with lynx and other text browsers. They should not be blocked from accessing websites.
     
  4. Bailey

    Bailey Well-Known Member

    Joined:
    Aug 12, 2001
    Messages:
    120
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Wisconsin
    It is not a bug. When mod_security triggers a rule, it is working correctly.

    If you do not understand how to run a piece of software, you should not be running it. Learn about mod_security before installing and messing with it. Otherwise, you are at risk for breaking your server and not being able to fix it (such as you are experiencing right now).

    So, uninstall mod_security.

    Then Google it.

    Read, read, and read some more.

    Then re-install, only after you feel you actually fairly understand what you're looking at.


    And hire a server administrator. You really, really need one. ;)

    :D Bailey
     
  5. anoetic

    anoetic Active Member

    Joined:
    Feb 5, 2006
    Messages:
    25
    Likes Received:
    0
    Trophy Points:
    1
    First, Baily, I *did* hire a system admin. Chirpy installed mod_security as part of his server setup. He installed the default WHM mod_security rules according to his report.

    Perhaps there is not a bug in mod_security, but there is a bug in the mod_security rules if they block anyone browsing with lynx from accessing websites. Since this is a set of rules supplied by WHM, then they have a bug in their rules.

    I could ask Chirpy to fix the rules, but I can guess what he will say: He doesn't fix WHM bugs.

    Now, I've been told to read the manual, so that's out of the way. I hope someone will respond with an actual fix to this problem. Thanks in advance to whomever manages to do that.
     
  6. AndyReed

    AndyReed Well-Known Member
    PartnerNOC

    Joined:
    May 29, 2004
    Messages:
    2,222
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Minneapolis, MN
    Post your Mod Sec rules here. It must be a rule you can disable to un-block Lynx.
     
  7. vanessa

    vanessa Well-Known Member
    PartnerNOC

    Joined:
    Sep 26, 2006
    Messages:
    817
    Likes Received:
    22
    Trophy Points:
    18
    Location:
    Virginia Beach, VA
    cPanel Access Level:
    DataCenter Provider
    To add to andy's post, the easiest way to see them is by viewing the config from the WHM > mod security section.

    All you have to do is look for the word 'lynx' in there and either remove it or comment out the whole rule.
     
  8. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,451
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Some most certainly should be.
     
  9. vanessa

    vanessa Well-Known Member
    PartnerNOC

    Joined:
    Sep 26, 2006
    Messages:
    817
    Likes Received:
    22
    Trophy Points:
    18
    Location:
    Virginia Beach, VA
    cPanel Access Level:
    DataCenter Provider
    realize that lynx can be used to download hacks and trigger runaway perl scripts....it's a good idea to block these for underprivileged users.
     
Loading...

Share This Page