Specifically, the mod_sec rules. I was noticing that my order forms would take anywhere from 2-10 minutes to complete. Never timed out, just sat there and spun and spun, eventually going through. Naturally, I thought this was an issue with ModernBill, so I bugged them about it.
They poked around, and found out that when they disabled mod_sec entirely, the whole process worked as intended. Unfortunately, he couldn't tell me which rule was the culprit. I've got nothing in my access or error logs anywhere to indicate that mod_sec is unhappy with anything that's coming across the wire, so I don't know how to further track this down.
Does anyone here have any ideas about this, or has maybe run into this issue before?
ASL causing issues with ModernBill?
If it's going through, albeit slowly, then mod_security probably isn't the culprit. modsec would block it entirely if it were.
If you want to verify this, here's an easy way to tell
1. identify what URL is acting up. We'll pretend the problem is with bill.php for argument's sake
2. Log in via SSH and
Where you replace that last part with today's date (i.e. 20080709)
3. We'll use grep to search for problems
4. If grep returns anything, copy the file name (and subdirectory) and open it in your editor. This will give you everything about what rule fired. If you find a false positive, report it to support AT atomicorp DOT com and they'll often have it fixed in an hour or two.
5. Once new rules are available, get them into your system
If you want to verify this, here's an easy way to tell
1. identify what URL is acting up. We'll pretend the problem is with bill.php for argument's sake
2. Log in via SSH and
Code: Select all
#cd /var/asl/data/audit/YYYYMMDD3. We'll use grep to search for problems
Code: Select all
#grep -r bill.php *5. Once new rules are available, get them into your system
Code: Select all
#asl -u