Home/Login   [ ReviewsQ & AHot off the WebForum ]   RegisterContact us
Log in to post content
Questions and Answers

Return to questions

How can I overcome mod_security not allowing me access to some of my url's?

Hobbit (0)   727 days ago
computers, technical, web development

I have noticed that some of the urls on my site don't come up properly.  When I click on them apache comes up with:  
An appropriate representation of the requested resource...
  and gives me a  
406 Not Acceptable
  error. 

I have noticed that it only happens when certain words are in one of the url variables.
LinksAnswers

Other Questions
How can I overcome mod_security not allowing me access to some of my url's?
I have noticed that some of the urls on my site don't come up properly.  When I click on them apache comes up with:  
An appropriate representation of the requested resource...
  and giv…

How can I delete a feed from Rhythmbox?
I have been looking around Rhythmbox and can't find a way to delete feeds that I now longer want.  I can delete the episodes‚ but can't stop the feed from updating.  I am using this un…

What's the name of the film with James Cagney in it‚ where he says "Made it‚ Ma! Top of the world"?
I remember seeing this film a long time ago‚ but can't remember what it is called.  He says the above quote just before the oil tank he is standing on blows up.

What can you use instead of timestampdiff on MySQL 4.0.20?
I have written an application using timestampdiff to work out the seconds‚ minutes and hours since something was done.  Unfortunately however I went to upload it on our production servers and fo…

Where does your lap go when you stand up??



0
Lenny (8)
727 days ago
The easiest way to fix this is to turn off the mod_security module.  You can do this by creating or editing your  
.htaccess
  file so that it has the lines:
 

<IfModule mod_security.c>
    # Turn off mod_security filtering.
    SecFilterEngine Off

    # And perhaps you should also turn off the following as well.
    SecFilterScanPOST Off
</IfModule>
 

1
Telamon (4)
727 days ago
One of the better ways to beat this problem is to encode the variable causing the problem.

In php you could use  
base64_encode
  and  
base64_decode
  to do this.  So you just encode the url's variable when you create it‚ and decode it when you want to read the contents of the variable.

This is better than turning off the module mod_security because when you do this you also lose the security benefits that this provides.


Useful Links




AdGridwork
Terms and Conditions | Frequently asked Questions | Statutory Information

Your continued use is taken as acceptance of the Terms and Conditions.

Valid HTML 4.01 Transitional      Valid CSS