Site Links
Home
Features
Documentation
Pricing & Order
Members Area
Support Options
UBBDev.com
UBBWiki.com
Who's Online Now
5 registered members (mgellan, isaac, peter gariepy, Geoff, JAISP), 57 guests, and 403 spiders.
Key: Admin, Global Mod, Mod
Member Spotlight
Gizmo
Gizmo
Portland, OR; USA
Posts: 16,833
Joined: June 2006
Show All Member Profiles 
Top Posters(30 Days)
isaac 56
Gizmo 43
Geoff 35
Morgan 30
ECNet 17
Ruben 14
Mark S 11
JAISP 10
Bert 8
Latest Photos
Chinese Buddhist temple.
My buddha beads.
Rendered Walls
Multi-Screen wallpaper
Stockholm Metro
Previous Thread
Next Thread
Print Thread
[NOTABUG] 404 Error on Preview #172707
01/08/07 01:39 PM
01/08/07 01:39 PM
Joined: Aug 2006
Posts: 727
New Mexico
Basil Offline OP
old hand
Basil  Offline OP
old hand
Joined: Aug 2006
Posts: 727
New Mexico
One of my members gets a 404 Error when trying to preview a post:

"Forbidden
You don't have permission to access /XXXXX/ubbthreads.php on this server."

Now I don't have this person's IP in my .htaccess (which is uaually why one would get this error). Rick, any idea what might cause this when he tries to preview?

Basil

Express Hosting
Express Hosting "We are the official hosting company of UBB.threads. Ask us about our free migration services to migrate your UBB.threads installation."
Re: 404 Error on Preview [Re: Basil] #172710
01/08/07 01:59 PM
01/08/07 01:59 PM
Joined: Jun 2006
Posts: 10,177
Aberdeen, WA
R
Rick Offline
Former Developer
Rick  Offline
Former Developer
R
Joined: Jun 2006
Posts: 10,177
Aberdeen, WA
Does everything else work ok? To see if it's some sort of AJAX issue with the user, have him try to edit his profile and preview his signature and see if that works for him.

Re: 404 Error on Preview [Re: Rick] #172724
01/08/07 03:58 PM
01/08/07 03:58 PM
Joined: Aug 2006
Posts: 1,942
NJ
jgeoff Offline
Pooh-Bah
jgeoff  Offline
Pooh-Bah
Joined: Aug 2006
Posts: 1,942
NJ

That is the exact error I get when the server I'm on rejects a keyword deemed dangerous, such as the word lynx (with a space after it). Perhaps your server has that same anti-hacking utility (or whatever it is) scanning your webforms, and it's rejecting a specific word being typed. Just a possibility. If you have them email the exact text to you, you could try it yourself to see if the server is rejecting something. You can also preview it here, as I don't think any utility like that is running (since I can use the work "lynx " here).


GangsterBB.NET (Ver. 7.5.8)
2007 Content Rulez Contest - Hon Mention
UBB.classic 6.7.2 - RIP
Browsers: Chrome, Firefox, & Safari (Win7 and iPhone); No IE, ever!
Re: 404 Error on Preview [Re: jgeoff] #172748
01/08/07 07:41 PM
01/08/07 07:41 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
it's called mod_security; and it's quite millitant... You should ask your host to check your error_log to see what keyword is triggering it.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #172751
01/08/07 08:25 PM
01/08/07 08:25 PM
Joined: Aug 2006
Posts: 1,942
NJ
jgeoff Offline
Pooh-Bah
jgeoff  Offline
Pooh-Bah
Joined: Aug 2006
Posts: 1,942
NJ
Originally Posted by Gizmo
it's called mod_security; and it's quite millitant... You should ask your host to check your error_log to see what keyword is triggering it.


Thanks, I keep forgetting what it's called, and I think I've mentioned this at least 3 different times already on this bb laugh


GangsterBB.NET (Ver. 7.5.8)
2007 Content Rulez Contest - Hon Mention
UBB.classic 6.7.2 - RIP
Browsers: Chrome, Firefox, & Safari (Win7 and iPhone); No IE, ever!
Re: 404 Error on Preview [Re: jgeoff] #172753
01/08/07 08:27 PM
01/08/07 08:27 PM
Joined: Jun 2006
Posts: 10,177
Aberdeen, WA
R
Rick Offline
Former Developer
Rick  Offline
Former Developer
R
Joined: Jun 2006
Posts: 10,177
Aberdeen, WA
Yeah, this is one of the things that had me stumped when working on a board. It wouldn't allow anything with a @ and a : on the same line.

Re: 404 Error on Preview [Re: Rick] #172755
01/08/07 08:44 PM
01/08/07 08:44 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Originally Posted by jgeoff
Thanks, I keep forgetting what it's called, and I think I've mentioned this at least 3 different times already on this bb laugh
And I think I've said its name 3 differant times already lol wink...

Originally Posted by Rick
Yeah, this is one of the things that had me stumped when working on a board. It wouldn't allow anything with a @ and a : on the same line.
We used it at "the webhost" when i was there, took some getting used to, and a lot of configuration to get running right...

It is quite nice, but ships way too anal retentive...


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #172759
01/08/07 09:05 PM
01/08/07 09:05 PM
Joined: Aug 2006
Posts: 1,942
NJ
jgeoff Offline
Pooh-Bah
jgeoff  Offline
Pooh-Bah
Joined: Aug 2006
Posts: 1,942
NJ
Originally Posted by Gizmo
And I think I've said its name 3 differant times already lol wink...


Next time I'll just search for the word "lynx" here and find it. laugh


GangsterBB.NET (Ver. 7.5.8)
2007 Content Rulez Contest - Hon Mention
UBB.classic 6.7.2 - RIP
Browsers: Chrome, Firefox, & Safari (Win7 and iPhone); No IE, ever!
Re: 404 Error on Preview [Re: jgeoff] #172763
01/08/07 09:17 PM
01/08/07 09:17 PM
Joined: Nov 2006
Posts: 3,390
ntdoc Offline
Carpal Tunnel
ntdoc  Offline
Carpal Tunnel
Joined: Nov 2006
Posts: 3,390
now searching for "anal retentive...lynx" waiting waiting....

Re: 404 Error on Preview [Re: jgeoff] #172764
01/08/07 09:18 PM
01/08/07 09:18 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Hehe one hopes wink...

I did a bunch of research on the module, it is really quite nice, but the rules themselves can toatally trash some scripts, not to mention leave the admin's of the sites going "what the hell?" when they're trying for legit use...

If you have access to your error logs you should be able to find it, in a section 509 error code i think; it's been a while since i've played with it.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Rick] #172777
01/08/07 10:24 PM
01/08/07 10:24 PM
Joined: Aug 2006
Posts: 727
New Mexico
Basil Offline OP
old hand
Basil  Offline OP
old hand
Joined: Aug 2006
Posts: 727
New Mexico
Originally Posted by Rick
Does everything else work ok? To see if it's some sort of AJAX issue with the user, have him try to edit his profile and preview his signature and see if that works for him.


Rick, he gets the same error when previewing his sig, so sounds like an AJAX issue, yes? The next question is what to do about it. I know that AJAX is related to Javascript so could it be that he has an outdated JRE? Or some setting not set right in his Netscape? He is on an older MAC with Netscape 7 if that helps.

Basil

Re: 404 Error on Preview [Re: Basil] #172778
01/08/07 10:53 PM
01/08/07 10:53 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
The JRE should only effect Java applets and not javascript (java and javascript aren't the same, just fyi)


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #172781
01/09/07 12:07 AM
01/09/07 12:07 AM
Joined: Aug 2006
Posts: 727
New Mexico
Basil Offline OP
old hand
Basil  Offline OP
old hand
Joined: Aug 2006
Posts: 727
New Mexico
I wonder why when I updated I stopped having problems with Previews. I was having Previews hang on me all the time, and when I upgraded to JRE 1.5.0_10 all of the sudden I stopped having any issues with Previews. Coincidence?

Re: 404 Error on Preview [Re: Basil] #172783
01/09/07 12:12 AM
01/09/07 12:12 AM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
:shrug: interesting to say the least lol... My friend Pat is a java programmer, he went off on me for like an hour for assuming they're the same thing (or at least related) lol.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Basil] #172790
01/09/07 12:55 AM
01/09/07 12:55 AM
Joined: Nov 2006
Posts: 3,390
ntdoc Offline
Carpal Tunnel
ntdoc  Offline
Carpal Tunnel
Joined: Nov 2006
Posts: 3,390
FYI - My best guess is it was either a coincidence or installing an updated java client cleared up some underlying file associations or other anomalies in the Registry.

Java vs. JavaScript
http://www.woodger.ca/jvjs.htm

Java vs. JavaScript
http://www.htmlgoodies.com/beyond/javascript/article.php/3470971

.

Re: 404 Error on Preview [Re: ntdoc] #172830
01/09/07 08:53 AM
01/09/07 08:53 AM
Joined: Aug 2006
Posts: 727
New Mexico
Basil Offline OP
old hand
Basil  Offline OP
old hand
Joined: Aug 2006
Posts: 727
New Mexico
Ok, so getting back to the original problem - I have a member who gets "404 Forbidden" if he tried to preview ANY post or if he tries to preview his signature in the profile. He is using NS7 on a MAC. Any ideas what might be gong on?

Basil

Re: 404 Error on Preview [Re: Basil] #172834
01/09/07 09:51 AM
01/09/07 09:51 AM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Ask him to copy the URL he's browsing when a 404 comes up.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #172840
01/09/07 10:55 AM
01/09/07 10:55 AM
Joined: Jun 2006
Posts: 10,177
Aberdeen, WA
R
Rick Offline
Former Developer
Rick  Offline
Former Developer
R
Joined: Jun 2006
Posts: 10,177
Aberdeen, WA
Also, you may be able to get some more info in the webserver error log. You'd need to know his IP and have him give you the time he gets the error, then you can scan the webserver error log to see if there are any details.

Re: 404 Error on Preview [Re: Rick] #172883
01/09/07 08:49 PM
01/09/07 08:49 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
yeh, if it's a mod security issue it'll show in the error log as well, along with the offending string used.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #172932
01/10/07 09:50 AM
01/10/07 09:50 AM
Joined: Aug 2006
Posts: 727
New Mexico
Basil Offline OP
old hand
Basil  Offline OP
old hand
Joined: Aug 2006
Posts: 727
New Mexico
Ok, I'll call him and have him try to preview a post then I'll go right in and see what is in the error log for his IP.

Re: 404 Error on Preview [Re: Basil] #173134
01/11/07 07:26 PM
01/11/07 07:26 PM
Joined: Dec 2006
Posts: 197
UK
Stephen G Offline

member
Stephen G  Offline

member
Joined: Dec 2006
Posts: 197
UK
I had a similar issue, turned out it was mod_security...contacted my hosts, explained issue, they fixed it, I'm happy !

Gizzy is right though :

"it's quite millitant

Two words were the cause...one understandable

insert

the other, just weird

from

Hmmmmmm

Weird !

Re: 404 Error on Preview [Re: Stephen G] #173140
01/11/07 08:10 PM
01/11/07 08:10 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
If you get the chance to view the words list you should jump on it, you can't really respect it as much until you do lol... Most of them have a comment that states what they're there to block.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #173166
01/11/07 11:36 PM
01/11/07 11:36 PM
Joined: Aug 2006
Posts: 727
New Mexico
Basil Offline OP
old hand
Basil  Offline OP
old hand
Joined: Aug 2006
Posts: 727
New Mexico
I have Mod Security installed, but where/how do I view the words that might be blocked?

On the other hand, I "Became" the member having the problem and did a preview of his signature and had no 404 Error (his sig is just an image tag with a single image) but when HE previews his sig (or previews ANY post) he gets the 404 error, so in his case at least I don't think its a Mod Security issue.

Basil

Last edited by Basil; 01/11/07 11:40 PM.
Re: 404 Error on Preview [Re: Basil] #173168
01/11/07 11:44 PM
01/11/07 11:44 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Basil, if this is the case with the user, it's likely something with his computer vs your server.

As for the mod_security keywords, I'm not sure where it stores it, i'll have to look it up (you will have to be rot on the server to view it)


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #173169
01/11/07 11:48 PM
01/11/07 11:48 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Ok, the exact location shoudl be in your httpd.conf, it should be a line indicating to include something similar to:
/etc/httpd/conf/modsecurity.conf

The default rules are:
Code
    # Only accept request encodings we know how to handle
    # we exclude GET requests from this because some (automated)
    # clients supply "text/html" as Content-Type
    SecFilterSelective REQUEST_METHOD "!^GET$" chain
    SecFilterSelective HTTP_Content-Type "!(^$|^application/x-www-form-urlencoded$|^multipart/form-data)"
 
    # Require Content-Length to be provided with
    # every POST request
    SecFilterSelective REQUEST_METHOD "^POST$" chain
    SecFilterSelective HTTP_Content-Length "^$"

    # Don't accept transfer encodings we know we don't handle
    # (and you don't need it anyway)
    SecFilterSelective HTTP_Transfer-Encoding "!^$"
 
# WEB-ATTACKS /bin/sh command attempt
SecFilter "/bin/sh"
 
# WEB-ATTACKS ps command attempt
SecFilterSelective THE_REQUEST "/bin/ps"
 
# WEB-ATTACKS /bin/ps command attempt
# SecFilterSelective THE_REQUEST "ps\x20"
 
# WEB-ATTACKS wget command attempt
SecFilter "wget\x20"
 
# WEB-ATTACKS uname -a command attempt
SecFilter "uname\x20-a"
 
# WEB-ATTACKS /usr/bin/id command attempt
SecFilter "/usr/bin/id"
 
# WEB-ATTACKS id command attempt
SecFilter "\;id"
 
# WEB-ATTACKS echo command attempt
SecFilter "/bin/echo"
 
# WEB-ATTACKS kill command attempt
SecFilter "/bin/kill"
 
# WEB-ATTACKS chmod command attempt
SecFilter "/bin/chmod"
 
# WEB-ATTACKS chgrp command attempt
SecFilter "/chgrp"
 
# WEB-ATTACKS chown command attempt
SecFilter "/chown"
 
# WEB-ATTACKS chsh command attempt
SecFilter "/usr/bin/chsh"
 
# WEB-ATTACKS tftp command attempt
SecFilter "tftp\x20"
 
# WEB-ATTACKS gcc command attempt
SecFilter "gcc\x20-o"
 
# WEB-ATTACKS cc command attempt
#SecFilter "cc\x20"
 
# WEB-ATTACKS /usr/bin/cpp command attempt
SecFilter "/usr/bin/cpp"
 
# WEB-ATTACKS cpp command attempt
SecFilter "cpp\x20"
 
# WEB-ATTACKS /usr/bin/g++ command attempt
SecFilter "/usr/bin/g\+\+"
 
# WEB-ATTACKS g++ command attempt
SecFilter "g\+\+\x20"
 
# WEB-ATTACKS bin/python access attempt
SecFilter "bin/python"
 
# WEB-ATTACKS python access attempt
SecFilter "python\x20"
 
# WEB-ATTACKS bin/tclsh execution attempt
SecFilter "bin/tclsh"
 
# WEB-ATTACKS tclsh execution attempt
SecFilter "tclsh8\x20"
 
# WEB-ATTACKS bin/nasm command attempt
SecFilter "bin/nasm"
 
# WEB-ATTACKS nasm command attempt
SecFilter "nasm\x20"
 
# WEB-ATTACKS /usr/bin/perl execution attempt
SecFilter "/usr/bin/perl"
 
# WEB-ATTACKS perl execution attempt
SecFilter "perl\x20"
 
# WEB-ATTACKS traceroute command attempt
SecFilter "traceroute\x20"

# WEB-ATTACKS ping command attempt
SecFilter "/bin/ping"
 
# WEB-ATTACKS netcat command attempt
SecFilter "nc\x20"
 
# WEB-ATTACKS nmap command attempt
SecFilter "nmap\x20"

# WEB-ATTACKS xterm command attempt
SecFilter "/usr/X11R6/bin/xterm"
 
# WEB-ATTACKS X application to remote host attempt
SecFilter "\x20-display\x20"
 
# WEB-ATTACKS lsof command attempt
SecFilter "lsof\x20"
 
# WEB-ATTACKS rm command attempt
SecFilter "rm\x20"
 
# WEB-ATTACKS mail command attempt
SecFilter "/bin/mail"
 
# WEB-ATTACKS /bin/ls command attempt
SecFilterSelective THE_REQUEST "/bin/ls"
 
# WEB-ATTACKS /etc/inetd.conf access
SecFilter "/etc/inetd\.conf" log,pass
 
# WEB-ATTACKS /etc/motd access
SecFilter "/etc/motd" log,pass
 
# WEB-ATTACKS /etc/shadow access
SecFilter "/etc/shadow" log,pass
 
# WEB-ATTACKS conf/httpd.conf attempt
SecFilter "conf/httpd\.conf" log,pass
 
# WEB-ATTACKS .htgroup access
SecFilterSelective THE_REQUEST "\.htgroup" log,pass

# WEB-CGI rksh access
SecFilterSelective THE_REQUEST "/rksh"
 
# WEB-CGI bash access
SecFilterSelective THE_REQUEST "/bash" log,pass
 
# WEB-CGI perl command attempt
SecFilterSelective THE_REQUEST "/perl\?"
 
# WEB-CGI zsh access
SecFilterSelective THE_REQUEST "/zsh"
 
# WEB-CGI csh access
SecFilterSelective THE_REQUEST "/csh"
 
# WEB-CGI tcsh access
SecFilterSelective THE_REQUEST "/tcsh"
 
# WEB-CGI rsh access
SecFilterSelective THE_REQUEST "/rsh"
 
# WEB-CGI ksh access
SecFilterSelective THE_REQUEST "/ksh"
 
# WEB-CGI icat access
SecFilterSelective THE_REQUEST "/icat" log,pass
 
# WEB-CGI /cgi-bin/ls access
SecFilterSelective THE_REQUEST "/cgi-bin/ls" log,pass
 
# WEB-CLIENT Javascript document.domain attempt
SecFilter "document\.domain\("
 
# WEB-CLIENT Javascript URL host spoofing attempt
SecFilter "javascript\://"
 
# WEB-MISC cross site scripting \(img src=javascript\) attempt
SecFilter "img src=javascript"
 
# WEB-MISC .htpasswd access
SecFilter "\.htpasswd"
 
# WEB-MISC http directory traversal
SecFilter "\.\.\\"
 
# WEB-MISC http directory traversal
SecFilter "\.\./"
 
# WEB-MISC ls%20-l
SecFilter "ls\x20-l"
 
# WEB-MISC /etc/passwd
SecFilter "/etc/passwd"
 
# WEB-MISC .htaccess access
SecFilter "\.htaccess"
 
# WEB-MISC cd..
SecFilter "cd\.\."
 
# WEB-MISC /.... access
SecFilter "/\.\.\.\."
 
# WEB-MISC cat%20 access
SecFilter "cat\x20"
 
# WEB-MISC long basic authorization string
SecFilter "Authorization\: Basic "
 
# WEB-MISC .history access
SecFilterSelective THE_REQUEST "/\.history"
 
# WEB-MISC .bash_history access
SecFilterSelective THE_REQUEST "/\.bash_history"
 
# WEB-MISC *%0a.pl access
SecFilterSelective THE_REQUEST "/*\x0a\.pl"
 
# WEB-MISC apache ?M=D directory list attempt
SecFilterSelective THE_REQUEST "/\?M=D" log,pass
 
# WEB-MISC server-status access
SecFilterSelective THE_REQUEST "/server-status" log,pass
 
# WEB-MISC Transfer-Encoding\: chunked

SecFilter "chunked"
 
# WEB-MISC perl post attempt
SecFilterSelective THE_REQUEST "/perl/" chain
SecFilter "POST"
 
# WEB-MISC mod_gzip_status access
SecFilterSelective THE_REQUEST "/mod_gzip_status" log,pass
 
# WEB-PHP squirrel mail spell-check arbitrary command attempt
SecFilterSelective THE_REQUEST "/squirrelspell/modules/check_me\.mod\.php" chain
SecFilter "SQSPELL_APP\["
 
# WEB-PHP squirrel mail theme arbitrary command attempt
SecFilterSelective THE_REQUEST "/left_main\.php" chain
SecFilter "cmdd="
 
# WEB-PHP phpbb quick-reply.php arbitrary command attempt
SecFilterSelective THE_REQUEST "/quick-reply\.php" chain
SecFilter "phpbb_root_path="
 
# WEB-PHP phpbb quick-reply.php access
SecFilterSelective THE_REQUEST "/quick-reply\.php" log,pass
SecFilterSelective THE_REQUEST "\.php" chain
SecFilter "path=http\://"
 
# WEB-PHP Mambo uploadimage.php upload php file attempt
SecFilterSelective THE_REQUEST "/uploadimage\.php" chain
SecFilter "\.php"
 
# WEB-PHP Mambo upload.php upload php file attempt
SecFilterSelective THE_REQUEST "/upload\.php" chain
SecFilter "\.php"
 
# WEB-PHP Mambo uploadimage.php access
SecFilterSelective THE_REQUEST "/uploadimage\.php" log,pass
 
# WEB-PHP Mambo upload.php access
SecFilterSelective THE_REQUEST "/upload\.php" log,pass
 
# WEB-PHP phpBB privmsg.php access
SecFilterSelective THE_REQUEST "/privmsg\.php" log,pass

# WEB-PHP test.php access
SecFilterSelective THE_REQUEST "/test\.php" log,pass

# WEB-PHP phpBB viewtopic.php
SecFilterSelective THE_REQUEST "viewtopic.php" chain 
SecFilterSelective "THE_REQUEST|ARG_VALUES" "(system|exec|passthru|cmd|fopen|exit|fwrite)" deny,log

# EXTRAS

SecFilter "/boot"
SecFilter "/dev"
SecFilter "/etc"
SecFilter "/initrd"
SecFilter "/lost+found"
SecFilter "/mnt"
SecFilter "/proc"
SecFilter "/root"
SecFilter "/sbin"
SecFilter "/tmp"
SecFilter "/usr/local/apache"
SecFilter "/var/spool"
SecFilter "/bin/cc"
SecFilter "/bin/gcc"
SecFilter "<[[:space:]]*script"
SecFilter "<(.|\n)+>"
SecFilter "delete[[:space:]]+from"
SecFilter "insert[[:space:]]+into"
SecFilter "select.+from"


But can be updated easily. Additionally a log should be created (should you specify Mod_Security to do so) in a directory similar to (this can be changed in the mod_security configuration file mentioned above):
/var/log/httpd/audit_log

Theres a whole post on setting it up here which includes some keywords which will conflict with forums and forms in general.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #173170
01/11/07 11:50 PM
01/11/07 11:50 PM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Oh btw, issues like this is why the "Become this user" option is great, because you can try to replicate things using their account, with instructions provided by them to see if it's an issue on your side, or if the issue exists between the monitor and the chair...


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #173184
01/12/07 05:52 AM
01/12/07 05:52 AM
Joined: Nov 2006
Posts: 3,390
ntdoc Offline
Carpal Tunnel
ntdoc  Offline
Carpal Tunnel
Joined: Nov 2006
Posts: 3,390

Re: 404 Error on Preview [Re: ntdoc] #173189
01/12/07 07:11 AM
01/12/07 07:11 AM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Indeed... I love wiki lol... I propose a [wiki:term] tag lol...


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: 404 Error on Preview [Re: Gizmo] #173194
01/12/07 09:27 AM
01/12/07 09:27 AM
Joined: Aug 2006
Posts: 727
New Mexico
Basil Offline OP
old hand
Basil  Offline OP
old hand
Joined: Aug 2006
Posts: 727
New Mexico
Originally Posted by Gizmo
Ok, the exact location shoudl be in your httpd.conf, it should be a line indicating to include something similar to:


Thanks for the info. I do suspect that the problem is in his set up, now I just have to figure out what is going on. I am wondering if he has a Firewall instaolled that might be causing a problem.

Re: 404 Error on Preview [Re: Basil] #173330
01/13/07 12:02 AM
01/13/07 12:02 AM
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,833
Portland, OR; USA
That is a definate possibilitiy; I've heard of some firewalls and security suites (including virus scanners) which block POST/GET requests, as well as referrer variables... Which would make sense


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!

Shout Box
Today's Birthdays
No Birthdays
Recent Topics
Moderators Cant See Forums
by peter gariepy. 01/22/18 10:26 PM
Moderator 7.6.1.1 - Adding Issue?
by Geoff. 01/22/18 03:34 PM
Active Links - reduce the length?
by peter gariepy. 01/22/18 12:53 AM
Upgrading from 7.6.0 to 7.6.1
by Baldeagle. 01/20/18 01:07 PM
Odd behavior with marking forums as read
by Baldeagle. 01/20/18 12:51 PM
Forum Statistics
Forums36
Topics35,052
Posts190,802
Members12,052
Most Online978
Jun 24th, 2007
Random Image
Powered by UBB.threads™ PHP Forum Software 7.6.1.1