Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Moved to server: Add Component not working
You can try something like this in your htaccess to confirm.

# insert your ip
SetEnvIf Request_Method !^POST$ MODSEC_ENABLE=On

Mod_sec will block xss attacks by detecting posts and gets containing the same code or data, indicating a successful reflected xss attack. Unfortunately this is exactly what we want to happen in a cms. If you are posting to a page that clearly exists and you get a 403, then something is blocking it, check your headers, but usually it is specifically made to be undetectable for real attackers. So your access and error logs will show apache blocking it.
NEW: SA Admin Toolbar Plugin | View All My Plugins
- Shawn A aka Tablatronix

Messages In This Thread
RE: Moved to server: Add Component not working - by shawn_a - 2013-06-05, 23:22:30

Users browsing this thread: 1 Guest(s)