Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

mod_security and get

Discussion in 'Security' started by webstyler, Jan 20, 2010.

  1. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    439
    Likes Received:
    0
    Trophy Points:
    166
    hi

    I have transferd customer domain on new server

    Herre he get an error on CRON that have a GET to simple php page

    Error:
    --
    <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head>
    <title>406 Not Acceptable</title>
    </head><body>
    <h1>Not Acceptable</h1>
    <p>An appropriate representation of the requested resource /mydir/cron_alerts.php could not be found on this server.</p> <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> <hr>
    <address>Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 Server at www.***.com Port 80</address> </body></html>

    --

    I read that may be mod_security

    But how to enable this ?

    Thanks
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. garrettp

    garrettp Well-Known Member
    PartnerNOC

    Joined:
    Jun 18, 2004
    Messages:
    312
    Likes Received:
    0
    Trophy Points:
    166
    cPanel Access Level:
    DataCenter Provider
    mod_security is something you would have had to manually enable/configure on your server. if you're the server admin and you're not familiar with it, chances are you don't have it installed.

    A 406 error is returned when the request (via the cron job) has Accept headers that are not compatible with what is being requested or what the server is set up to deliver.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    439
    Likes Received:
    0
    Trophy Points:
    166
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    439
    Likes Received:
    0
    Trophy Points:
    166
    under

    WHM > plugins > mod security > config

    there is

    <IfModule mod_security2.c>
    Include /usr/local/apache/conf/js_modsecurity/*.conf
    </IfModule>
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. webstyler

    webstyler Well-Known Member

    Joined:
    Nov 20, 2003
    Messages:
    439
    Likes Received:
    0
    Trophy Points:
    166
    under log

    Access denied with code 406 (phase 2). Pattern match "lwp" at REQUEST_HEADERS:User-Agent. [file "/usr/local/**/useragents.conf"] [line "74"]

    think is this rules

    #Blocks scripts
    SecRule HTTP_User-Agent lwp

    I have insert comment but nothing change :(

    any idea ?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice