The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

mod_security and get

Discussion in 'Security' started by webstyler, Jan 20, 2010.

  1. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
    hi

    I have transferd customer domain on new server

    Herre he get an error on CRON that have a GET to simple php page

    Error:
    --
    <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head>
    <title>406 Not Acceptable</title>
    </head><body>
    <h1>Not Acceptable</h1>
    <p>An appropriate representation of the requested resource /mydir/cron_alerts.php could not be found on this server.</p> <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> <hr>
    <address>Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 Server at www.***.com Port 80</address> </body></html>

    --

    I read that may be mod_security

    But how to enable this ?

    Thanks
     
  2. garrettp

    garrettp Well-Known Member
    PartnerNOC

    Joined:
    Jun 18, 2004
    Messages:
    312
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    DataCenter Provider
    mod_security is something you would have had to manually enable/configure on your server. if you're the server admin and you're not familiar with it, chances are you don't have it installed.

    A 406 error is returned when the request (via the cron job) has Accept headers that are not compatible with what is being requested or what the server is set up to deliver.
     
  3. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
  4. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
    under

    WHM > plugins > mod security > config

    there is

    <IfModule mod_security2.c>
    Include /usr/local/apache/conf/js_modsecurity/*.conf
    </IfModule>
     
  5. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    432
    Likes Received:
    0
    Trophy Points:
    16
    under log

    Access denied with code 406 (phase 2). Pattern match "lwp" at REQUEST_HEADERS:User-Agent. [file "/usr/local/**/useragents.conf"] [line "74"]

    think is this rules

    #Blocks scripts
    SecRule HTTP_User-Agent lwp

    I have insert comment but nothing change :(

    any idea ?
     
Loading...

Share This Page