HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials

HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials (http://www.howtoforge.com/forums/index.php)
-   General (http://www.howtoforge.com/forums/forumdisplay.php?f=25)
-   -   Any Apache2 Modules to avoid? (http://www.howtoforge.com/forums/showthread.php?t=43793)

BorderAmigos 3rd March 2010 00:49

Any Apache2 Modules to avoid?
 
General question. Want to experiment with different Apache modules. Are there any that are already known to cause problems with ISPConfig 3? Thanks.

till 3rd March 2010 10:32

The only package that causes some problems is mod_security when you use it on the ispconfig interface vhost as ispconfig sends paths like /etc/ in post requests and mod_security thinks that this is a malicius post as normal websites normally do not use system paths in post requests.

manarak 27th May 2010 12:54

Hi, I'm having issues with that as well, but I think mod_security is very useful!

I am looking for a way to configure Mod_security2 in such manner that it leaves ISPConfig3 alone.
Does anyone know how to do that?

manarak 27th May 2010 13:07

I'll be replying to my own question.

locate etc/apache2/sites-available/ispconfig.vhost

and in the <Virtualhost> section, add

<IfModule mod_security2.c>
SecRuleEngine Off
</IfModule>

and restart apache

IMO, this could be a good addition to the ISPConfig default configuration.

falko 28th May 2010 14:39

I've added this feature request to our bugtracker.

yoplait 29th May 2010 21:04

Is the problem with mod_security still a problem ? (and on every apache server ?)
I've never seen any issue on my side about this and I use it since several months...

till 29th May 2010 21:22

As far as I know, the issues only occur if you edit the server settings in the ispconfig interface.


All times are GMT +2. The time now is 02:21.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.