mod security exclude list.

gabrix · Oct 20, 2006

i have a bunch of mod security directives anti xxs etc.because i work with joomla and mambo there is also an exclude file where a directive 'SecFilterRemove' should allow me to work with this cms but ...
Code:
Invalid command 'SecFilterRemove', perhaps mis-spelled or defined by a module not included in the server configuration
... this is the error i get !What's the right directive to exclude in mod security ... ????

falko · Oct 21, 2006

Where exactly did you put the SecFilterRemove directive?

gabrix · Oct 22, 2006

i used an include /etc/apache2/conf.d/modsecurity.conf
file and these are the codes:

#generic PHP forum posting exclusion
<LocationMatch "/posting.php">
SecFilterRemove 300013
</LocationMatch>

#PhpMyadmin
<LocationMatch "/tbl_change.php">
SecFilterRemove 300016
</LocationMatch>

#/xde/managecontent.php
<LocationMatch "/xde/managecontent.php">
SecFilterRemove 300016
</LocationMatch>
Click to expand...

falko · Oct 23, 2006

I've found this on http://www.g-loaded.eu/2006/08/24/modsecurity-overview/ :

SecFilterRemove

This directive is the exact opposite of SecFilterImport. It has a meaning only if SecFilterInheritance has not been disabled in a particular context and works only for filters that have not been marked for mandatory inheritance (see below). It accepts a space-delimited list of rule IDs and can be used to explicitly disable inherited filters.
Click to expand...

Maybe you broke one of these rules?

Log in or Sign up

mod security exclude list.

gabrix New Member

falko Super Moderator Howtoforge Staff

gabrix New Member

falko Super Moderator Howtoforge Staff

Share This Page

Log in or Sign up

mod security exclude list.

gabrix New Member

falko Super Moderator Howtoforge Staff

gabrix New Member

falko Super Moderator Howtoforge Staff

Share This Page

Useful Searches