steven.ray
New member
- Joined
- May 27, 2016
- Messages
- 1
hi dear friends
i use CB2.0 and Nginx_apache reverse web server .
i install modsecurity in modsecurity_ruleset=comodo
but i have problem with cache and gzip and somethings else .
after install modsecurity , gzip and cache have problem in my sites .
in audit log i see this :
but i cant find id : 981172 in catalog in direct admin WAF panel .
please help me how i can solve this problem
i use CB2.0 and Nginx_apache reverse web server .
i install modsecurity in modsecurity_ruleset=comodo
but i have problem with cache and gzip and somethings else .
after install modsecurity , gzip and cache have problem in my sites .
in audit log i see this :
Code:
--2d583b76-H--
Message: Access denied with code 406 (phase 2). Pattern match "([\\~\\!\\@\\#\\$\\%\\^\\&\\*\\(\\)\\-\\+\\=\\{\\}\\[\\]\\|\\:\\;\"\\'\\\
xc2\xb4\\\xe2\x80\x99\\\xe2\x80\x98\\`\\<\\>].*?){8,}" at REQUEST_COOKIES:wp-settings-1. [file "/etc/modsecurity.d/modsecurity_crs_41_sq
l_injection_attacks.conf"] [line "157"] [B][id "981172"][/B] [rev "2"] [msg "Restricted SQL Character Anomaly Detection Alert - Total # of spec
ial characters exceeded"] [data "Matched Data: & found within REQUEST_COOKIES:wp-settings-1: editor=tinymce&edit_element_vcUIPanelWidth=
784&edit_element_vcUIPanelLeft=297px&edit_element_vcUIPanelTop=92px&libraryContent=browse&hidetb=1&urlbutton=none&imgsize=full&align=cen
ter"] [ver "OWASP_CRS/2.2.9"] [maturity "9"] [accuracy "8"] [[B]tag "OWASP_CRS/WEB_ATTACK/SQL_INJECTION[/B]"]
Action: Intercepted (phase 2)
Apache-Handler: IIS
but i cant find id : 981172 in catalog in direct admin WAF panel .
please help me how i can solve this problem