Web14 (CL1)

Bunchadogs · Apr 1, 2009

Is the web14 server 'different' from the rest?

I've been having some issues with both CMS and Galleries that I've used mulitple times on Jodo servers before...it seems to stem from ModSecurity?

From the error log:
ModSecurity: Access denied with code 501 (phase 2). Match of "rx (?:^(?:application\\\\/x-www-form-urlencoded(?:;(?:\\\\s?charset\\\\s?=\\\\s?[\\\\w\\\\d\\\\-]{1,18})?)??$|multipart/form-data

|text/xml)" against "REQUEST_HEADERS:Content-Type" required. [id "960010"] [msg "Request content type is not allowed by policy"] [severity "WARNING"] [hostname "edited.com"] [uri "/components/com_expose/expose/manager/amfphp/gateway.php"] [unique_id "SdOju0C7aF8AAAVwU7gAAAAM"]

Stephen · Apr 1, 2009

They all have the same set of rules as far as I know, do you have a ticket in about this? I say as far as I know of course, because linux is not my dept and I rarely do anything on it

Bunchadogs · Apr 1, 2009

No ticket yet - I know you folks are really busy and I feel guilty about even posting here!!

I'll keep 'learning' more about the issue and trying to pin down the porblem.

Ideally I'll have a specific question to post a ticket - rather than just 'this does not work - why?!?!?!'

Thanks!

Stephen · Apr 1, 2009

Bunchadogs said:
No ticket yet - I know you folks are really busy and I feel guilty about even posting here!!

I'll keep 'learning' more about the issue and trying to pin down the porblem.

Ideally I'll have a specific question to post a ticket - rather than just 'this does not work - why?!?!?!'

Thanks!

Modsecurity can be a pain, but it protects against literally 1000's of phishing hacks and other hacks daily, some day's I'd say it goes into the multiple 10's of thousands in protecting pages from such. (in count I mean malicious hits that would otherwise deface/hack/allow some function)

Bunchadogs · Apr 1, 2009

I was trying to disable some specific Sec stuff...I'm guessing you have that totally locked down though...

Bunchadogs · Apr 1, 2009

I finally submitted a ticket earlier today and Praveen was quick to help find a solution, which did involve a Mod Security exclusion rule.

I've still got one problem with the same gallery script, and looks like it might require one more ModSec exclusion rule...

This problem appears to be common to a number of PHP scripts (including Word Press) that have a Flash based upload tool.

This is the first time I've had these problems here at Jodo - so I was wondering if there is some difference in the setup of Web14 versus the other linux servers in the cluster?

As usual, I'm impressed with the speed and helpfulness of all at Jodo. I deal with other hosting companys on a pretty regular basis, and this level of help is really amazing!

Web14 (CL1)

Bunchadogs

Perch

Stephen

US Operations

Bunchadogs

Perch

Stephen

US Operations

Bunchadogs

Perch

Bunchadogs

Perch