Disabling mod_security on XenForo

P

PlanetMaster

Member
Will adding these lines in htaccess completely disable mod_security on my XenForo community?

<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>
 
Sort by date Sort by votes
planetmaster said:
Will adding these lines in htaccess completely disable mod_security on my XenForo community?

<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>
Click to expand...

Depends what version of mod security it is.

However if its the right version yes, just place those entries before the XenForo rules.
 
Upvote 0 Downvote
Slavik said:
Depends what version of mod security it is.

However if its the right version yes, just place those entries before the XenForo rules.
Click to expand...
I have Apache 2.x so it should be using mod_security 2.x.

Actually I have added those lines in htaccess (actually just removed the # from original) but I can't seem to upload files using Flash uploader.
Any ideas?
 
Upvote 0 Downvote
planetmaster said:
The ModSecuirty rule 300016 was buffering the attachments in the log!
Weird but white-listing the rule solved the problem..
Click to expand...
Can you describe how you whitelisted it ?
I've never heard of anyone getting rid of a mod_security problem via whitelisting. (I knew it was possible, but never seen any reports).
most people with mod_security on don't have this problem.
I wonder why you did.

https://www.modsecurity.org/tracker/browse/CORERULES-16
rule 300016 incorrectly matches "selection" word

What was your specific situation that was triggering 300016 ?
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

DiscussionBucks
  • Question Question
XF 2.2 Assistance Needed: Disabling Xenforo Caching/Service Workers to Resolve Ezoic Integration Issues
Replies
2
Views
53
rdn
R
Cupara
  • Question Question
What would be best Nginx or Nginx + Apache?
Replies
2
Views
1K
Cupara
Cupara
donwon
Disabling Mod_Security
Replies
7
Views
2K
Nirjonadda
Nirjonadda
beerForo
  • Question Question
XF 2.2 Disabling "Amazon S3 for XenForo" add-on
Replies
4
Views
781
beerForo
beerForo
Saido
  • Question Question
XF 2.1 Moving XenForo from root to subfolder
Replies
4
Views
1K
audiokid
audiokid
Back
Top Bottom