ispCP - Board - Support
[HowTo] Mod Security on debian - Printable Version

+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega Contributions Area (/forum-40.html)
+--- Forum: Howtos (/forum-41.html)
+--- Thread: [HowTo] Mod Security on debian (/thread-2862.html)

Pages: 1 2 3 4

RE: Mod Security on debian - DaSilva - 06-15-2008 05:01 AM

I always get this error with PHP-Fusion if modsecurity_crs_40_generic_attacks.conf is activated.

Quote:501 Method Not Implemented

POST to /HP/administration/panel_editor.php not supported.
Apache/2.2.0 (Fedora) Server at http://www.domain.tld Port 80

No ID is posted in error.log.

How can I solve that?

RE: Mod Security on debian - Zothos - 06-15-2008 06:02 PM

disable the corresponding rule.....

RE: [HowTo] Mod Security on debian - r3r3 - 12-24-2008 12:20 AM

Hello
I am getting this error

Code:
[Tue Dec 23 15:14:06 2008] [error] [client 127.0.0.1] ModSecurity: Access denied with code 400 (phase 2). Pattern match "^[\\d\\.]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity2/modsecurity_crs_21_protocol_anomalies.conf"] [line "60"] [id "960017"] [msg "Host header is a numeric IP address"] [severity "CRITICAL"] [tag "PROTOCOL_VIOLATION/IP_HOST"] [hostname "127.0.0.1"] [uri "/"] [unique_id "Y2ErmAoCApQAAAj1GDIAAAAT"]

Should i do something about it? It's obviousely my own server's localhost ip which is blocked by modescurity, anyone can advise what to do?

RE: [HowTo] Mod Security on debian - seba22 - 01-07-2009 01:34 AM

How to disable mod security for admin.ispcp ?

Disable code is:

<location />
SecRuleEngine Off
</location>


But where is virtualhost for admin.ispcp

RE: [HowTo] Mod Security on debian - Lucan - 01-07-2009 03:36 AM

/var/www/ispcp/gui i think.

RE: [HowTo] Mod Security on debian - seba22 - 01-07-2009 05:30 AM

I found:

webserver:/etc/apache2/sites-enabled# nano 00_master.conf


Maybye add this to wishlist ?

Small checkbox in creation user accound ( enable mod security) and then in vhost enable mod security ?

RE: [HowTo] Mod Security on debian - Lucan - 10-25-2009 09:26 PM

Since there went over quite much time, is there any .deb source for lenny?


Greets

RE: [HowTo] Mod Security on debian - Jillian - 10-27-2009 03:15 AM

Packages for Lenny:
deb http://etc.inittab.org/~agi/debian/libapache-mod-security2 ./

RE: [HowTo] Mod Security on debian - Lucan - 10-28-2009 03:05 AM

And can you also tell me, which of the changes i have to do for the deb source, to make it work with ispcp?


Thanks Wink

RE: [HowTo] Mod Security on debian - Lucan - 11-01-2009 02:23 AM

no idear?

greetings