Hosting Security and Technology Configuring and optimizing web hosting servers and operating systems, developing administration scripts, building servers, protecting against hackers, and general security (SSL certificates, etc.)

Forum Jump

Mod_security rule being triggered

Send news tip

View All Posts

Thread Tools

Search this Thread

Display Modes

05-20-2006, 01:22 PM

PCGH

Newbie

Join Date: May 2003

Posts: 5

Mod_security rule being triggered

Using the stock rules.conf with mod_security. One of the rules is:

SecFilterSelective REQUEST_URI "\.php(3|4|5)?(\?|&).*=(ht|f)tps?:/.*(\?|&)"

When I try to go to the following URL, mod_security blocks it:

https://mydomain.com/~thornt00/store/admin/login.php

I'm no expert in regular expressions by any means and am trying to figure out what part of the URL is setting it off. Is it the & in the rule being triggered by the numbers in the URL? Is there any harm in just commenting out this rule?

Thanks!

Tony

Sponsored Links

Related posts from TheWhir.com
Title	Type	Date Posted
CloudFlare Crashes After Juniper Edge Routers Fail	Web Hosting News	2013-03-04 15:31:30
CoreLink Completes Data Center Audit, Establishes HIPAA Compliant Hosting	Web Hosting News	2012-03-27 12:55:43
Security Firm Trustwave Launches New Managed Security Services	Web Hosting News	2012-02-23 14:03:03
ColoHouse Partners with SECNAP for Secure Netowrk Solutions	Web Hosting News	2011-12-20 17:56:40
CloudPassage Joins Cloud Security Alliance	Web Hosting News	2011-06-09 20:58:30

« Previous Thread | Next Thread »

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode
Postbit Selector
Use Vertical (Legacy) Postbit

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is Off HTML code is Off Forum Rules