Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
QUESTION Hardware / server firewall and components?
#1
I have a problem with one GS installation. I can't save any components in backend.   Huh
Server response is http://domain.fi/cgi-sys/blocked?event=81.***.***.**

Hosting provider tells me it's because the cms, ie GetSimple is according to them "not acting in a non-standard way or is acting in an otherwise unrecognizable way". Their firewall keeps blocking my attempts to edit components because of this oddly behaving cms.

Strange enough, I've never come across this type of odd behaviour with other hosting, just with this particular company.

Is there anything to be done, besides changing to another hosting company (I believe tho the site owner isn't pleased with that idea)?
Reply
#2
It is probably detecting your components as a xss injection.

Do you have script tags ?

I have never seen this kind of filter usually its mod_sec that blocks these, i have never seen a url redirect.

It is hard to legitimately avoid these filters, if it is indeed mod_sec sometimes you can whitelist stuff.

http://resources.infosecinstitute.com/av...e-listing/
also there are ways to turn it off entirely for your ip, described elsewhere.
NEW: SA Admin Toolbar Plugin | View All My Plugins
- Shawn A aka Tablatronix
Reply
#3
(2015-11-18, 23:56:48)shawn_a Wrote: It is probably detecting your components as a xss injection.

Do you have script tags ?

I have never seen this kind of filter usually its mod_sec that blocks these, i have never seen a url redirect.

It is hard to legitimately avoid these filters, if it is indeed mod_sec sometimes you can whitelist stuff.

http://resources.infosecinstitute.com/av...e-listing/
also there are ways to turn it off entirely for your ip, described elsewhere.

My bad, I wrote server firewall as subject. Sorry. [Edited post subject.]
If I understood their answer correctly, it's a hardware firewall that's blocking, not their Apache setup. But now I'm not 100% certain. I don't know that much about the tech stuff. Of course, their helpdesk personnel are hasty to blame the cms for everything.

Site is done locally, then uploaded to server.
All the components done locally work but now when it's running on their server they can not be saved after editing nor can I save new components (not even with just plain text).
Whenever I try to save a component it redirects me to [i]http://domain.fi/cgi-sys/blocked?event=81.***.***.**

Otherwise, the site is (so far) running as expected. Pages, posts (with News Manager), no problem adding new ones or editing old ones.
Reply
#4
could be cloudflare or something similar

I have had an open issue on this, but it is not something that will be implemented any time soon.
I just whipped a working concept though of what we might be able to do, and it can be implemented as plugin.


https://github.com/GetSimpleCMS/GetSimpleCMS/issues/517
NEW: SA Admin Toolbar Plugin | View All My Plugins
- Shawn A aka Tablatronix
Reply




Users browsing this thread: 1 Guest(s)