The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Mod_security Question

Discussion in 'Security' started by parkypoo22, May 19, 2006.

  1. parkypoo22

    parkypoo22 Active Member

    Joined:
    Nov 9, 2005
    Messages:
    39
    Likes Received:
    0
    Trophy Points:
    6
    I've had to comment out /lib/ in httpd.conf mod_security rules so that modernbill v5 will work properly!

    What are the implecations of this, and is there a safer method?

    Thanks

    Matt
     
  2. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    983
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
    Ouch

    I've been thinking about ditching moderbill, even though it's great app. But to turn off mod_security to make it work.... not cool
     
  3. ramprage

    ramprage Well-Known Member

    Joined:
    Jul 21, 2002
    Messages:
    667
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Canada
    Have you tried something like?

    <Location /modernbill>
    SecFilterEngine Off
    </Location>
     
  4. sparek-3

    sparek-3 Well-Known Member

    Joined:
    Aug 10, 2002
    Messages:
    1,381
    Likes Received:
    23
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    I've always set up my mod_security rules to have an ID, for example you might use something like:

    SecFilterSelective THE_REQUEST "/lib" id:1001,deny,log,status:406

    Then in the VirtualHost section in your httpd.conf, do something like:

    <Location /modernbill>
    SecFilterRemove 1001
    </Location>


    This way your other rules for mod_security still apply, but scripts in your /modernbill directory ignore the /lib entry.
     
  5. ramprage

    ramprage Well-Known Member

    Joined:
    Jul 21, 2002
    Messages:
    667
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Canada
    Having ID rules is a great way to keep track of error messages and issues. It's definately recommended if you have it setup that way.
     
Loading...

Share This Page