Re: 403 errors
Here is the file from my error logs.
[Thu Jan 29 22:11:54 2009] [error] [client 184.108.40.206] mod_security: Access denied with code 403. Pattern match “\\.php\\?(([a-zA-Z0-9\\-\\_\\.\\[\\]]*)=(http|https|ftp))” at REQUEST_URI [id “6600001”][rev “1”] [msg “Hsphere Rules 1: experimental rule for most php application attacks. Report false positives”] [severity “CRITICAL”] [hostname “support.mysite.net”] [uri “/wp-login.php?redirect_to=http%3A%2F%2Fsupport.mysite.net%2F”] [unique_id “SYJv@sz1K2IAAEkMDOo”]
Obviously mod_security is stopping this believing it’s an attack.
One thing I do not want to do is turn off mod_security, as when I look through just today’s logs there are thousands of actual attack attempts. I had no idea I was such a target already…
Is there a way to add exception rules to mod_security?
Or is there a better way to do this so I can use wordpressmu with buddypress?