Re: [mod-security-users] Nginx - Unable to find upstream config after checking Request Body
Brought to you by:
victorhora,
zimmerletw
From: Jose P. V. L. <pab...@gm...> - 2013-07-01 11:55:46
|
Hi there!! Fortunately I founded same error some time ago: [client X.X.X.X] ModSecurity: Request body (Content-Length) is larger than the configured limit (131072). Deny with status (413) [hostname "www.mydomain.com"] [uri "/xxx/xxx/web.php"] [unique_id "Whatever"] I solved with next steps: # Maximum request body size we will # accept for buffering #####SecRequestBodyLimit 131072 SecRequestBodyLimit 10485760 # Store up to 128 KB in memory #####SecRequestBodyInMemoryLimit 131072 SecRequestBodyInMemoryLimit 10485760 # Buffer response bodies of up to # 512 KB in length #####SecResponseBodyLimit 524288 SecResponseBodyLimit 10485760 Values are in bytes. Try to raise those values in mod_security general config. I´ll hope this will help you. Kind Regards, 2013/7/1 Andy Bowes <and...@gm...> > Hi > > We are just starting to use ModSecurity (v2.7.4) to protect our Nginx > (v1.4.1) web apps and we are encountering an error if SecRequestBodyAccess > is turned on. > > After going through all of the rules Nginx attempts to forward to the > upstream server but it fails to find the configuration value. If > SecRequestBodyAccess is not turned on then Nginx works as expected and the > requests are forwarded to the appropriate upstream server. > > We have SecRuleEngine set to DetectionOnly and checking the modsecurity > access log seems to indicate that all of the rules checks are successful. > > Is there anything else we should be setting/checking to get ModSecurity to > handle POST requests on Nginx? > > Thanks > Andy > > > > > ------------------------------------------------------------------------------ > This SF.net email is sponsored by Windows: > > Build for Windows Store. > > http://p.sf.net/sfu/windows-dev2dev > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: > http://www.modsecurity.org/projects/commercial/rules/ > http://www.modsecurity.org/projects/commercial/support/ > > |