Ugh. ASO Tech Support finally got back to me about my log-in / mod_security issue. I was hoping it'd be a quick fix as in the past, but does this make any sense to anyone?
I have checked the mod security rule and could see that the action you are trying to do looks suspicious. You have to contact the application provider and ask them for the details. You can provide them with these details:
[*] URLS Affected: /threads/ubbthreads.php
[*] Description: Atomicorp.com WAF Rules: Uniencoded possible Remote File Injection attempt in URI (AE)
In the server, the ImageMagick version is already installed. You can verify the same at this link:
http://gangsterbb.net/phpinfo.phpAgain, everything was working just fine until they migrated to a new server farm.
When you click on the Log In link on the main forums page at gangsterbb.net :
http://www.gangsterbb.net/threads/ubbthreads.php?http://www.gangsterbb.net/threads/ubbthreads.php?ubb=login&ocu=http%3A%2F%2Fwww.gangsterbb.net%2Fthreads%2Fubbthreads.php%3Fubb%3Dcfrm
I get the "Not Acceptable!" mod_security warning that I've seen before. Last time this happened, the web host (ASO) whitelisted something and it worked again. Interestingly, there is a work-around in the mean time: Clicking on a user profile brings up its own log-in link that
does work:
http://www.gangsterbb.net/threads/ubbthreads.php?ubb=showprofile&User=2
