• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.

Issue with mod_security and Horde

D

Doc Rock

Guest
Hey, I'm having a problem with mod_security blocking email messages from Horde that include a cc: in the body of the message. I cannot seem to find what rule I need to suspend in order to let those go through.

I'm running Plesk 8.2 on RHEL and still using mod_sec 1.9.

The error that I see in my error_log is:
[Wed Oct 29 13:26:12 2008] [error] [client xx.xx.xx.xx] mod_security: Access denied with code 403. Pattern match "cc:" at POST_PAYLOAD [severity "EMERGENCY"] [hostname "xxx.host.net"] [uri "/imp/compose.php?uniq=13u3jwo3evnk"]

In the exclude.conf file I have:
#Squirrel mail and Horde postings
<LocationMatch "/imp/compose.php">
SecFilterRemove 300013
SecFilterRemove 300015
SecFilterRemove 300016
</LocationMatch>


Doc
 
You must log in or register to reply here.

Similar threads

P
mod_security blocking webmail?
Replies
1
Views
8K
panaman
P
S
modifying mod_security
Replies
16
Views
8K
shoggy24
S
P
mod_security rules?
Replies
11
Views
9K
Xtreme-IT
X
Back
Top