We build. You grow.

Get best community software here

Start a social network, a fan-site, an education project with oxwall - free opensource community software

MODSECURITY direction for Oxwall | Forum

Oxwall Türkiye
Oxwall Türkiye Jan 29 '17

MODSECURITY direction for Oxwall

What should be the permits for Oxwall. In this case, what can be the problems.

Why are not the MODSECURITY directives, which can not be answered continuously?

The plug-in that creates the vulnerabilities is not marked as valid.

We are not able to give any answer in response to the response directive received as a result of continuous manager warning. Please provide an open source and information about the required permissions.

3.1 SecAuditEngine

4 3.2 SecAuditLog

4 3.3 SecAuditLog2 

5 3.4 SecAuditLogParts

5 3.5 SecAuditLogRelevantStatus

3.6 SecAuditLogStorageDir

3.7 SecAuditLogType 

Oxwall Türkiye
Oxwall Türkiye Jan 30 '17

Dont does anyone have any idea in this regard?

The variety of modes is a known fact.

There are many types of input. These entries should have a level of permission. This should apply to all plugins.

This problem can be solved with a stamp processed into puling.xml.

The path and permission levels are different for each add-on.

Most of the server companies are complaining about this problem.

Every developer should put a plier note on information and processing and be supervised.

All plugins are thus under to control.

Some people not know that they can make requests that require false permission modes.

Even for this matter Form topic title is a probable problem

Darryl B Leader
Darryl B Jan 30 '17
This is the best I can do for you. I don't know anything about Mod Security. I leave that up to the hosting. This post seems to have some good info for someone trying to set it up.

Oxwall Türkiye
Oxwall Türkiye Feb 2 '17

This is a known method and it does not work very much.When the safety process with the cause of a small problem is to stop the tensioner.We continue to experience the same problems as the server.What kind of permit do you want ......We do not know because we never learned.It's ridiculous to find it by trial and error.

Oxwall management will provide a solution for this.

A note should be added to the add-on packages.

It can control what kind of permissions the plugins require.

All developers should embed this permission as a note in their add-ons.

There is a variety of varieties, we can find out what kind of permission and what kind of permission you want with this method.