Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Mod_security Question

Discussion in 'Security' started by parkypoo22, May 19, 2006.

  1. parkypoo22

    parkypoo22 Active Member

    Joined:
    Nov 9, 2005
    Messages:
    39
    Likes Received:
    0
    Trophy Points:
    156
    I've had to comment out /lib/ in httpd.conf mod_security rules so that modernbill v5 will work properly!

    What are the implecations of this, and is there a safer method?

    Thanks

    Matt
     
  2. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    994
    Likes Received:
    2
    Trophy Points:
    168
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
    Ouch

    I've been thinking about ditching moderbill, even though it's great app. But to turn off mod_security to make it work.... not cool
     
  3. ramprage

    ramprage Well-Known Member

    Joined:
    Jul 21, 2002
    Messages:
    655
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Canada
    Have you tried something like?

    <Location /modernbill>
    SecFilterEngine Off
    </Location>
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. sparek-3

    sparek-3 Well-Known Member

    Joined:
    Aug 10, 2002
    Messages:
    1,761
    Likes Received:
    116
    Trophy Points:
    343
    cPanel Access Level:
    Root Administrator
    I've always set up my mod_security rules to have an ID, for example you might use something like:

    SecFilterSelective THE_REQUEST "/lib" id:1001,deny,log,status:406

    Then in the VirtualHost section in your httpd.conf, do something like:

    <Location /modernbill>
    SecFilterRemove 1001
    </Location>


    This way your other rules for mod_security still apply, but scripts in your /modernbill directory ignore the /lib entry.
     
  5. ramprage

    ramprage Well-Known Member

    Joined:
    Jul 21, 2002
    Messages:
    655
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Canada
    Having ID rules is a great way to keep track of error messages and issues. It's definately recommended if you have it setup that way.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice