If Apache is compiled with SuPhp and Mod Security, do the following:
Create a directory for that domain:
mkdir -p /usr/local/apache/conf/userdata/std/2/USERNAME/DOMAIN.TLD
Then create a mod_security conf file:
touch /usr/local/apache/conf/userdata/std/2/USERNAME/DOMAIN.TLD/mod_security.conf
Using your favorite Linux Text editor such as pico or vi, add the following directive(s) in that file:
<IfModule mod_security2.c>
SecRuleEngine Off
</IfModule>
Save the file and then run:
/scripts/ensure_vhost_includes –user=USERNAME
If Apache is NOT compiled with SuPhp and Mod Security, do the following:
You can implement one of the following two options:
1. Add the following directive in .htaccess file:
<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>
If that didn’t work on your server ,
2. SSH to the server and add the following directive to /etc/httpd/conf/httpd.conf file:
<IfModule mod_security2.c>
SecRuleEngine Off
</IfModule>
No comments:
Post a Comment