Content-Type: multipart/alternative; boundary="_20534188-9a82-444d-b50e-ec2f24e7a6ea_" --_20534188-9a82-444d-b50e-ec2f24e7a6ea_ Content-Type: text/plain; charset="iso-8859-7" Content-Transfer-Encoding: quoted-printable =0A= =0A= =0A= Hello Ryan=2C thanks for replying and for your interest=2C i really appreci= ate it. I have already done =0A= that in the 900012 id rule. It appears to be a REQUEST_BODY error(I am tryi= ng to find which rules in phase 2 are collaboratively triggering the block)= . If i =0A= set the directive SecRequestBodyAccess Off and the SecResponseBodyAccess O= n error disappears so it is =0A= limited in phase 2. All i get from the debug.log is a 500 status =0A= error. If i increase the debugLevel to 4 the list doesn't let me upload the= file because the request body size limit is exceeded=2C anyway the rule i= d that is triggering the denial in it is 970901.I am attaching a simple mod= sec_audit.log =0A= = --_20534188-9a82-444d-b50e-ec2f24e7a6ea_ Content-Type: text/html; charset="iso-8859-7" Content-Transfer-Encoding: quoted-printable
=0A= =0A= =0A=
Hello Ryan=2C thanks for replying and for your interest=2C= i really appreciate it. I have already done =0A= that in the 900012 id rule. It appears to be a REQUEST_BODY error(I am tryi= ng to find which rules in phase 2 are collaboratively triggering the block)= . If i =0A= set the directive SecRequestBodyAccess =3B Off and the SecResponseBodyA= ccess On error disappears so it is =0A= limited in phase 2. All i get from the debug.log is a 500 status =0A= error. If i increase the debugLevel to 4 the list doesn't let me upload the= file =3B because the request body size limit is exceeded=2C anyway the= rule id that is triggering the denial in it is 970901.I am attaching a sim= ple modsec_audit.log
=0A=
= --_20534188-9a82-444d-b50e-ec2f24e7a6ea_--