Mod_Security for an account is turned off/disabled on depending upon
the version of Mod_Security i.e. it can be disabled in .htaccess file
in modsecurity1 and have to disable it in VirtualHost entry of a domain
in modsecurity2. Apache 1.x supports Mod Security1 and Apache 2.x supports Mod Securiry2. To find out the version of Apache, execute
Create a .htaccess file in an account
You cannot disable mod security in a .htaccess file here (it’s setup this way to enhance security). You have to turn off mod security in the VirtualHost of the domain in the Apache configuration file. Edit the configuration file:
httpd -vMod Security1:
Create a .htaccess file in an account
vi .htaccessand insert the following:
<IfModule mod_security.c>Mod Security2:
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>
You cannot disable mod security in a .htaccess file here (it’s setup this way to enhance security). You have to turn off mod security in the VirtualHost of the domain in the Apache configuration file. Edit the configuration file:
vi /etc/httpd/conf/httpd.confscroll down to the VirtualHost of the domain and place the following lines:
<IfModule mod_security2.c>Save the configuration file and restart the Apache service.
SecRuleEngine Off
</IfModule>
service httpd restart
No comments:
Post a Comment