UK WEB HOSTING FORUM FOR DISCUSSION ON WEB HOSTING SERVICE AND SUPPORT
LINUX HOSTING WINDOWS HOSTING PACKAGES SHOPPING CART OSCOMMERCE ZEN CART AGORA
ECOMMERCE HOSTING ASP MSSQL FRONTPAGE HOSTING PHP MYSQL HOSTING DISCUSSION FORUM
CPANEL RESELLER HOSTING DEDICATED SERVER VPS HOSTING PLESK VIRTUOZZO
Quick Search
Your forum announcement here!

  UK Web Hosting | Dedicated Server Windows and Linux VPS Forum > Technical Support > cPanel Shared Hosting
Keep being sent home.

Reply
Page 2 of 2 < 1 2
 
LinkBack Thread Tools Search this Thread Display Modes
  #21 (permalink)  
Old 29-06-2007, 12:42
Chief Technical Officer
  
Join Date: Jun 2007
Posts: 89
Default mod_security
The mod_security is a web application intrusion detection and prevention engine. It operates by 'hook'ing itself into apache and inspecting all requests for your specific ruleset. It can be used to monitor your server with logging or even protect it by denying attacks.

The mod_security module gives Apache Web server increased ability to inspect and process input from Web clients before it's acted on by the scripts or processes waiting for the input.

We understand that these changes will certainly affect your website hosting administration in one way or another. However, our top priority here is to protect our servers and data.

Commenting out a line in a mod_security configuration or exclude affected domain from mod_security restriction is a workaround, but it would be potential increase in site-wide risk for vulnerability to cross-site scripting attack.
A better workaround, does not blindly remove the filter for all applications.
Reply With Quote
  #22 (permalink)  
Old 29-06-2007, 19:37
DPS Computing's Avatar
Premium Member
  
Join Date: Apr 2007
Location: Manchester, United Kingdom
Posts: 4,849
Send a message via ICQ to DPS Computing Send a message via AIM to DPS Computing Send a message via MSN to DPS Computing Send a message via Yahoo to DPS Computing Send a message via Skype™ to DPS Computing
Default
Thanks for posting on here Nick - I understand that you are probably a very busy person but am pleased that you have taken the time to become a member and hopefully we will see more posts from you in the future.

What is the "better workaround" that you mentioned then - or is this specifically done on a case by case basis?
__________________
David Smith
DPS Computing
http://www.dpscomputing.com (Computing, Reviews, News) - New site / new polls / new stories! With many more to follow!
NEW LAUNCH! http://djdavid.dpscomputing.com (My DJ Website)
NEW LAUNCH! http://davidsmith.dpscomputing.com (My Personal Website)
Reply With Quote
  #23 (permalink)  
Old 30-06-2007, 05:17
Chief Technical Officer
  
Join Date: Jun 2007
Posts: 89
Default
Thank you, David.

Its depend upon the rules affecting the application and the absolute path for the directory under which the application is installed. As I mentioned in my previous post there is no direct workaround for it other than commenting out the rules or excluding domain from the restriction.
Still I am working on customizing the rule set, so that it wont block legitimate application but it would take time. I don't have exact ETA on it but will try to implement it asap.
Reply With Quote
  #24 (permalink)  
Old 01-07-2007, 16:43
DPS Computing's Avatar
Premium Member
  
Join Date: Apr 2007
Location: Manchester, United Kingdom
Posts: 4,849
Send a message via ICQ to DPS Computing Send a message via AIM to DPS Computing Send a message via MSN to DPS Computing Send a message via Yahoo to DPS Computing Send a message via Skype™ to DPS Computing
Default
Quote:
Originally Posted by NickJ View Post
Thank you, David.

Its depend upon the rules affecting the application and the absolute path for the directory under which the application is installed. As I mentioned in my previous post there is no direct workaround for it other than commenting out the rules or excluding domain from the restriction.
Still I am working on customizing the rule set, so that it wont block legitimate application but it would take time. I don't have exact ETA on it but will try to implement it asap.
Well good luck with modifying the rules - I am sure you will do the best you can for us!!
__________________
David Smith
DPS Computing
http://www.dpscomputing.com (Computing, Reviews, News) - New site / new polls / new stories! With many more to follow!
NEW LAUNCH! http://djdavid.dpscomputing.com (My DJ Website)
NEW LAUNCH! http://davidsmith.dpscomputing.com (My Personal Website)
Reply With Quote
Reply
Page 2 of 2 < 1 2

« has some one been bashing and hacking again? | Changing the directory an addon domain is served from »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT. The time now is 19:38.

 

Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by Web Hosting 3.1.0
Copyright © 2001-2008, eUKhost.com. All rights reserved.

Dedicated Server Hosting | VPS Hosting | Web Hosting UK | cPanel Hosting | Contact Us | UK Web Hosting | Archive
 
Site Map

VPS Hosting
VPS Hosting plans

Dedicated Server Hosting
Dedicated Server plans

Business Web Hosting
100% uptime Hosting

Cpanel Hosting
cPanel Shared Hosting

Reseller Hosting
Reseller Web Hosting

Windows Hosting
Windows Shared Hosting

Windows VPS
Windows VPS Hosting

Semi Dedicated Servers
Semi-Dedicated Hosting

Dedicated Server Mirroring
Dedicated Server Mirroring

Webhosting Knowledgebase
Frequently asked Questions

Web Hosting Blog
eUKhost Blog

Web Hosting Support
Support Helpdesk

UK Data Center
eUKhost Datacenter

Web Hosting Forum
eUKhost Forum

Support Tutorials
Online Flash Tutorials

Offsite Back-up Plans
Remote Backup Service

Customer Testimonials
eUK Customer Testimonials
knowledgebase articles

eUKhost.com Services

Pre-Sales Questions
Pre-sales FAQ's

Domain Names
Domain registration FAQ's

cPanel Hosting
cPanel Hosting FAQ's

Windows Web Hosting
Plesk Control Panel

Reseller Hosting
Reseller Hosting FAQ's

VPS Hosting
Virtual Private Server

Semi-Dedicated Servers
Semi-Dedicated FAQ's

Dedicated Servers
Dedicated Server Hosting
popular blog categories


Web Hosting
Website Hosting articles

UK Web Hosting
UK Hosting articles

Dedicated Server Hosting
Dedicated Server guidelines

VPS Hosting
VPS hosting articles

cPanel Hosting
cPanel Hosting articles

Linux Operating System
Linux Operating techniques

Windows Web Hosting
Windows plesk articles