ModSecurity y Google

migarcia

• May 09, 2015 01:59

Hay una regla de mod_security que rechaza las visitas de googlebot:
[Sat May 09 02:37:04 2015] [error] [client 66.249.65.61] ModSecurity: Access denied with redirection to domain.com/' using status 302 (phase 2). RBL lookup of domain.61.65.xxx.xx.dnsbl.httpbl.org succeeded at TX:real_ip. Search Engine: 0 days since last activity, threat score 5 [file "/usr/local/apache/conf/modsec_vendor_configs/OWASP/rules/REQUEST-10-IP-REPUTATION.conf"> [line "60"> [id "981138"> [msg "HTTP Blacklist match for client IP."> [severity "CRITICAL"> [tag "Host: domain.com [tag "IP_REPUTATON/MALICIOUS_CLIENT"> [hostname "domain.com"> [uri "/ca/la-casa-2/"> [unique_id "VU1WsC5pFPYAAGJ-UDsAAAAI">
y pasa continuamente, en CSF a"ado las ips dinamicamente a la lista blanca si vienen de google, pero como puedo solucionarlo en Mod_Security

• 

  cPanelMichael

  • May 11, 2015 12:46

  Hello, You can disable that OWASP rule and then report it to the vendor if it's not working as intended. This thread is helpful:

  0
• 

  migarcia

  • May 13, 2015 17:04

  Gracias.

  0
• 

  migarcia

  • May 13, 2015 17:21

  Pero...cuando intento informar recibo este error: Warning:The system was unable to submit the request: curl: (60) SSL certificate problem, verify that the CA cert is OK. Details: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed More details here:

  0
• 

  cPanelMichael

  • May 13, 2015 17:58

  Could you open a support ticket using the link in my signature so we can take a closer look? You can post the ticket number here so we can update this thread with the outcome. Thank you. Translation: Podr"a abrir un ticket de soporte utilizando el enlace en mi firma para que podamos tomar una mirada m"s cercana? Puede publicar el n"mero de entradas aqu" para que podamos actualizar este hilo con el resultado. Gracias.

  0

Please sign in to leave a comment.