Hi. Some of our forum members are frequently getting blocked due to Modsecurity rules getting triggered (false-positive).
It seems to be happening with normal actions such as browsing a thread, submitting / editing a post, uploading attachments etc.
It does not happen each time, but it does happen often enough. Our webhost advised to disable certain rules, which I don’t want to.
We also tested with whitelisting certain URIs but it doesn’t seem to help much. I’m quite confused what to do.
Please suggest a suitable course of action that we can take without compromising our server or website security.
We’re not using Cloudflare at present. Do you think its free plan can help to avert this situation?
Thank you
It seems to be happening with normal actions such as browsing a thread, submitting / editing a post, uploading attachments etc.
It does not happen each time, but it does happen often enough. Our webhost advised to disable certain rules, which I don’t want to.
We also tested with whitelisting certain URIs but it doesn’t seem to help much. I’m quite confused what to do.
Please suggest a suitable course of action that we can take without compromising our server or website security.
We’re not using Cloudflare at present. Do you think its free plan can help to avert this situation?
Thank you
