fuzzylogic

1. Community
2. Web Servers & Applications
3. 403 Forbidden after rearranging of account

/mnt/home-dir/home/usrname/.htaccess pcfg_openfile: unable to check htaccess file This seems to be a non-standard path to find a domains .htaccess file on a cPanel server. A more standard path woul...

• View comment
• fuzzylogic
• June 06, 2017 05:22
• 0 votes

1. Community
2. Security
3. Mod_Security with CRS

OK. The fact that the ...REQUEST-901-INITIALIZATION.conf"> [line "61"> [id "901001"> [msg "ModSecurity Core Rule Set is... error is being generated shows 3 things. 1 modsecurity.conf is being inclu...

• View comment
• fuzzylogic
• June 01, 2017 00:40
• 0 votes

1. Community
2. Security
3. Mod_Security with CRS

If you want the rule-set to be silent about being deployed without a configuration file then it is correct. I doubt that is what you want though.

• View comment
• fuzzylogic
• May 31, 2017 10:20
• 0 votes

1. Community
2. Security
3. Mod_Security with CRS

Are you sure you're using cPanel? Sounds like you should rename OWASP3/crs-setup.conf.example to crs-setup.conf Then restart apache.

• View comment
• fuzzylogic
• May 31, 2017 00:46
• 0 votes

1. Community
2. Security
3. ModSecurity - Edit Custom Rules

I am using ConfigServer ModSecurity Control to disable some custom rules by user and is not working. I have managed to reproduce the CMC failure. If the id you enter into the CMC test field is sy...

• View comment
• fuzzylogic
• May 05, 2017 05:04
• 0 votes

1. Community
2. Security
3. ModSecurity - Edit Custom Rules

I am using ConfigServer ModSecurity Control to disable some custom rules by user and is not working. I detected this issue on 2017-04-16, previously this was working ok. I am using cPanel & WHM 64...

• View comment
• fuzzylogic
• May 04, 2017 08:53
• 0 votes

1. Community
2. Security
3. ModSecurity - Edit Custom Rules

It seems like it is no longer possible to disable rules from the Edit Custom Rules interface in WHM (modsec2.user.conf). The modsec2.conf files includes this one before the modsec2.cpanel.conf fil...

• View comment
• fuzzylogic
• May 04, 2017 08:08
• 0 votes

1. Community
2. Security
3. Upgrading mod security to OWASP 3.0

All rule numbers have changed between versions. The Post referenced by infopro on netnea used an early version of v3.0.0-dev which was from before the time renumbering was complete. As a for instan...

• View comment
• fuzzylogic
• April 28, 2017 06:51
• 0 votes

1. Community
2. Web Servers & Applications
3. Apache Status page fails after 64 update

This is a legitimate and safe request from your server to itself, so it is nothing to worry about. My server makes similar requests for three separate reasons. 1. Loading Apache Status page as you ...

• View comment
• fuzzylogic
• April 29, 2017 09:39
• 0 votes

1. Community
2. Web Servers & Applications
3. Apache Status page fails after 64 update

Quote. "implemented OWASP ModSecurity Core Rule Set V3.0 as well as the core OWASP ModSecurity Core Rule Set" It makes no sense to have both rule sets enabled simultaneously. Try with only the Cor...

• View comment
• fuzzylogic
• April 29, 2017 03:06
• 0 votes