[Mailman-Users] Mail from GioMBG > hack this into /etc/httpd/modsecurity.d/modsecurity_crs_30_http_policy.conf to alowed mod_security + mailman into fedora 7 moonshine with mod_security

Tue, 26 Jun 2007 17:27:05 -0700 

MANY Thanks Jeffrey!
SINCERLY!
I have resolved with this hack into my:
/etc/httpd/modsecurity.d/modsecurity_crs_30_http_policy.conf
Simply I have commented:
SecRule REQUEST_BASENAME
as
# SecRule REQUEST_BASENAME
I think that is the minor hack to prevent this kind of 
apache+mod_security+mailman error and to alowed the .shtml file extension in my 
html...
YES You have just resolved not one but the 2 unique most bad problem into my 
newest monshine (fedora7)!
MANY THANKs!
GioMBG

---| hack this into 
/etc/httpd/modsecurity.d/modsecurity_crs_30_http_policy.conf to alowed 
mod_security + mailman into fedora 7 moonshine with mod_security |---
# Restrict file extension
#
# TODO the list of file extensions below are virtually always considered unsafe
#      and not in use in any valid program. If your application uses one of 
#      these extensions, please remove it from the list of blocked extensions.
#      You may need to use ModSecurity Core Rule Set Templates to do so, 
otherwise
#      comment the whole rule.       
#
# SecRule REQUEST_BASENAME 
"\.(?:c(?:o(?:nf(?:ig)?|m)|s(?:proj|r)?|dx|er|fg|md)|p(?:rinter|ass|db|ol|wd)|v(?:b(?:proj|s)?|sdisco)|a(?:s(?:ax?|cx)|xd)|s(?:html?|ql|tm|ys)|d(?:bf?|at|ll|os)|i(?:d[acq]|n[ci])|ba(?:[kt]|ckup)|res(?:ources|x)|l(?:icx|nk|og)|\w{,5}~|webinfo|ht[rw]|xs[dx]|exe|key|mdb|old)$"
 \
    "t:urlDecodeUni, t:lowercase, deny,log,auditlog,status:500,msg:'URL file 
extension is restricted by policy', severity:'2',id:'960035'"
-- 
GiĆ² "MBG" Canepa - E Mail: mbg a mbg.it
Phone & Fax +39 0541 985 737 - Mobile +39 393 33 567 07
http://www.mbg.it | http://www.9Records.com
Snail mail P.O. Box 59 / 47838 Riccione Italy
------------------------------------------------------
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: 
http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp

Reply via email to