Re: [mod-security-users] Always get default action
Brought to you by:
victorhora,
zimmerletw
From: Ivan R. <iva...@gm...> - 2006-08-10 20:17:12
|
On 8/10/06, Robert Temple <rts...@gm...> wrote: > I'm having problems setting up mod_security on my server. Whenever I edit > the httpd.conf file with the mod_security settings my server always shows > the default action (i.e. 500, 404, etc.) > > I'm thinking it is something goofed up in my setting. Could you look at this > code and let me know where I've gone wrong? Sure. > # Don't accept transfer encodings we know we don't handle > SecFilterSelective "HTTP_Transfer-Encoding "!^$" The above line is faulty. There's an extra double quote at before HTTP. Remove it and you'll be fine. -- Ivan Ristic, Technical Director Thinking Stone, http://www.thinkingstone.com ModSecurity: Open source Web Application Firewall |