mod_security and ISPmanager

Community support forums for the free/delayed modsecurity rules feed. There is no such thing as a bad question here as long as it pertains to using the delayed modsecurity rules feed. Newbies feel free to get help getting started or asking questions that may be obvious.
rhopek
Forum User
Forum User
Posts: 7
Joined: Mon Jul 25, 2011 5:15 pm
Location: Atlanta

mod_security and ISPmanager

Unread post by rhopek »

It appears that because ISPmanager is called via '/manager/ispmgr', the entry for '<LocationMatch /manager/>' in 10_asl_rules.conf is causing some requests to fail, i.e., when trying to edit files in ISPmanager's File Manager, you get "You don't have permission to access /manager/ispmgr on this server.".

So, a) is there a way to preempt that Location entry with one that is specifically for '/manager/ispmgr' that is then ignored/permitted, and b) in this case the report of the problem was with a file editor, so is there another section we should be looking that might be interfering?

Thanks,
roho
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4149
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: mod_security and ISPmanager

Unread post by mikeshinn »

LocationMatch is used to exclude rules, or to change rules. So it sounds like you may have a false positive. Could you send us the audit payload for that event?
Post Reply