[Modsecurity]
Gotroot mod_security rules not working with Apache 1.3.37
Hex Star
hexstar at gmail.com
Mon Sep 3 19:13:55 EDT 2007
Hello, I downloaded the full Apache 1 ruleset from gotroot.com and set it
up, Apache starts and everything but when trying to access any page at all
on the server a 500 Internal Error is displayed and the following is found
in the error_log:
[Mon Sep 3 16:00:43 2007] [error] [client 127.0.0.1] mod_security: Access
denied with code 500. Pattern match
"((select|grant|delete|insert|drop|alter|replace|truncate|update|create|rename|describe)[[:space:]]+[A-Z|a-z|0-9|\\\\*|
|\\\\,]+[[:space:]]+(from|into|table|database|index|view)[[:space:]]+[A-Z|a-z|0-9|\\\\*|
|\\\\,]|\\\\'|UNION.*SELECT.*FROM)" at ARG("art_id") [severity "EMERGENCY"]
[hostname "127.0.0.1"] [uri "/"]
Why is this happening and how can I fix this? Thanks! :)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.gotroot.com/pipermail/modsecurity/attachments/20070903/7590381b/attachment.html
More information about the Modsecurity
mailing list