 How to disable Mod_Security in linux. |
 The DNS Guys |
Anycast DNS 25 Nameservers Worldwide |
DNS Failover Host Monitoring & Auto Rollback |
Outbound SMTP Smart Relay, SASL |
| Subversion Hosting OpenID Servers & XMPP |
DNSSEC TSIG & Secondary DNS |
easyRoute53 Amazon Route53 GUI |
  |
| How to disable Mod_Security in linux. |
 Mar 10 2011, 09:17 AM
Post
#1
|
|
|
Whats this Lie-nix Thing?  Group: Members Posts: 1 Joined: 10-March 11 Member No.: 15,153  |
Hello all,
I was trying to run some script which is under cgi-bin folder, but mod_security is not allowing me to do so. I tried disabling mod_security by creating .htaccess under my document root (I think which is /var/www/html) with following values Collapse <IfModule mod_security2.c> SecRuleEngine Off SecAuditEngine Off </IfModule> but still I could see in http error log: Collapse [Thu Mar 10 21:36:22 2011] [error] [client 10.206.152.61] ModSecurity: Access denied with code 501 (phase 2). Match of "rx (?:^(?:application\\\\/x-www-form-urlencoded(?:;(?:\\\\s?charset\\\\s?=\\\\s?[\\\\w\\\\d\\\\-]{1,18})?)??$|multipart/form-data;)|text/xml)" against "REQUEST_HEADERS:Content-type" required. [id "960010"] [msg "Request content type is not allowed by policy"] [severity "WARNING"] [hostname "10.209.116.191"] [uri "/cgi-bin/perf.pl"] [unique_id "BtPUSX8AAAEAADttKm0AAAAB"] ---------------------- Can someone help me out , am I missing something or is there any alternative way? (I am using apache version 2.2.6) Thanks in advance Tanuj |
 |
 
|
|
|
Lo-Fi Version | Time is now: 23rd May 2013 - 01:17 AM |
