Thread: [mod-security-users] Failing to write tmp file for multipart data
Brought to you by:
victorhora,
zimmerletw
From: Thomas E. <tho...@gm...> - 2013-10-25 11:41:50
|
I'm seeing quite a few ModSecurity: Multipart parsing error: Multipart: writing to "/tmp/20130813-094051-UgnjA on uploads of multiple files. SecDataDir /tmp SecTmpDir /tmp SecUploadDir /tmp/ SecUploadFileMode 644 are all in place and disk space is not an issue. These errors are not reproducible reliably, meaning I have to try the upload several times before it happens. I do see some temporary files being created but not to the point where SecUploadFileLimit would hit. It is not set explicitly, so defaults to 100 according to https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#wiki-SecUploadFileLimit. Between the attempts to reproduce the error there are no "left-overs" in /tmp/ so this is not due to /tmp/ filling up. This is happening on mod_security 2.5.12 with OWASP CRS 2.7.3. I'm aware this stuff is rather old but I have to be absolutely, 100% sure an update fixes this issue before updating becomes an option. Any suggestions on how to debug this ? Cheers, Thomas |
From: Josh Amishav-Z. <ja...@ow...> - 2013-10-27 09:24:36
|
On Fri, Oct 25, 2013 at 2:41 PM, Thomas Eckert <tho...@gm...>wrote: > > This is happening on mod_security 2.5.12 with OWASP CRS 2.7.3. I'm aware > this stuff is rather old but I have to be absolutely, 100% sure an update > fixes this issue before updating becomes an option. > > Hi Thomas, There have been multiple fixes affecting multipart uploads since version 2.5.12. Is it possible to setup a test instance and try to recreate your test there? -- - Josh > Any suggestions on how to debug this ? > > Cheers, > Thomas > > > ------------------------------------------------------------------------------ > October Webinars: Code for Performance > Free Intel webinars can help you accelerate application performance. > Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most > from > the latest Intel processors and coprocessors. See abstracts and register > > http://pubads.g.doubleclick.net/gampad/clk?id=60135991&iu=/4140/ostg.clktrk > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: > http://www.modsecurity.org/projects/commercial/rules/ > http://www.modsecurity.org/projects/commercial/support/ > > |
From: Thomas E. <tho...@gm...> - 2013-11-25 08:38:47
|
I have not been able to reproduce the original problem since upgrading to 2.7.2. Thanks for your help :-) On Sun, Oct 27, 2013 at 10:24 AM, Josh Amishav-Zlatin <ja...@ow...>wrote: > On Fri, Oct 25, 2013 at 2:41 PM, Thomas Eckert < > tho...@gm...> wrote: > >> >> This is happening on mod_security 2.5.12 with OWASP CRS 2.7.3. I'm aware >> this stuff is rather old but I have to be absolutely, 100% sure an update >> fixes this issue before updating becomes an option. >> >> > Hi Thomas, > > There have been multiple fixes affecting multipart uploads since version > 2.5.12. Is it possible to setup a test instance and try to recreate your > test there? > > -- > - Josh > > >> Any suggestions on how to debug this ? >> >> Cheers, >> Thomas >> >> >> ------------------------------------------------------------------------------ >> October Webinars: Code for Performance >> Free Intel webinars can help you accelerate application performance. >> Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most >> from >> the latest Intel processors and coprocessors. See abstracts and register > >> >> http://pubads.g.doubleclick.net/gampad/clk?id=60135991&iu=/4140/ostg.clktrk >> _______________________________________________ >> mod-security-users mailing list >> mod...@li... >> https://lists.sourceforge.net/lists/listinfo/mod-security-users >> Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: >> http://www.modsecurity.org/projects/commercial/rules/ >> http://www.modsecurity.org/projects/commercial/support/ >> >> > > > ------------------------------------------------------------------------------ > October Webinars: Code for Performance > Free Intel webinars can help you accelerate application performance. > Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most > from > the latest Intel processors and coprocessors. See abstracts and register > > http://pubads.g.doubleclick.net/gampad/clk?id=60135991&iu=/4140/ostg.clktrk > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > Commercial ModSecurity Rules and Support from Trustwave's SpiderLabs: > http://www.modsecurity.org/projects/commercial/rules/ > http://www.modsecurity.org/projects/commercial/support/ > > |