[mod-security-users] more on clamAV and mod_security
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] more on clamAV and mod_security
|
From: Justin G. <web...@sw...> - 2005-11-23 11:16:30
|
hi, I gave another shot to this setup, on a different server using apache2, modsec 1.9 (stable) and PHP. This server only serves a webmail system - SquirrelMail. The script works OK here, no su_exec or permissions problems. If I upload an attachment to the message in SM, it gets scanned OK. When I hit the "Send" button to actually have the message sent, I get 500 error. Look like modsec thinks I'm uploading a file again and looks for an uploaded file again. This is the error from audit_log: mod_security-message: Access denied with code 500. Error verifying files: File "/tmp/webfiles/20051123-025721-XXX.XXX.XXX.XXX-" rejected by the approver script "/var/www/cgi-bin//modsec-clamscan.pl" (no file name is after the dash) please advise if this can be sorted out. After all, what application needs this feature more than a Webmail system? :) thanks, Justin |
