Project InfoSponsor & PartnerInstalling ispCPFAQDocumentationDevelopment
Current time: 12-27-2024, 12:24 PM Hello There, Guest! (LoginRegister)

ispCP - Board - Support / ispCP Omega Support Area / Usage v / mod-security2 and awstats = error 500

Post Reply 
mod-security2 and awstats = error 500
Author Message
Wut Offline
Junior Member
*

Posts: 18
Joined: Aug 2007
Reputation: 0
Post: #4
RE: mod-security2 and awstats = error 500
How ?

I'm edit /etc/modsecurity2/modsecurity_crs_30_http_policy.conf and comment the following line out :

# Restrict file extension
#
# TODO the list of file extensions below are virtually always considered unsafe
# and not in use in any valid program. If your application uses one of
# these extensions, please remove it from the list of blocked extensions.
# You may need to use ModSecurity Core Rule Set Templates to do so, otherwise
# comment the whole rule.
#
SecRule REQUEST_BASENAME "\.(?:c(?:o(?:nf(?:ig)?|m)|s(?:proj|r)?|dx|er|fg|md)|p(?:rinter|ass|db|ol|wd)|$
"phase:2,t:none,t:urlDecodeUni, t:lowercase, deny,log,auditlog,status:500,msg:'URL file extension is$

Are there any better solution ? like whitelist for awstats.pl or something
(This post was last modified: 08-10-2008 01:27 AM by Wut.)
08-09-2008 03:54 AM
Find all posts by this user Quote this message in a reply
Post Reply 


Messages In This Thread
RE: mod-security2 and awstats = error 500 - Wut - 08-09-2008 03:54 AM

Forum Jump:


User(s) browsing this thread: 3 Guest(s)

Contact Us | isp Control Panel ( ispCP ) | Return to Top | Return to Content | Lite (Archive) Mode | RSS Syndication