ModSecurity + Ajax

May 29, 2007

I am running apache 1.3 + modsecurity 1 my problem is i can not use ajax coz of modsecurity is there any way to make ajax work with modsecurity on apache 1 coz i know it's work on apache 2

View 1 Replies


ADVERTISEMENT

AJAX On A VPS

Sep 10, 2008

I've developed an AJAX app which is essentially a souped up chatroom. The client basically polls the server every 10 seconds, and XML containing any new information for the client is returned from the server by a php script. A separate script is called when a message is posted and stuck in a MySQL database.

It's a bit more complex than that because it also fetches RSS feeds but that's the essential core.

The bandwidth is extremely low, especially as all the graphics and javascript files are served from a separate server.

At the moment I'm running on a VPS in the US for $40/month with 512MB RAM. I'm not sure there's much more I can do to optimise the code and the queries, but the whole thing chokes when there are more than 200 online. A typical response time to a client in the UK (where most users are based) is 300ms but that grows exponentially after about 180 come online.

Being a developer who knows very little about hosting, my questions are:

* Should it be grinding to a halt with that load?
* Is any shared hosting or VPS likely to cope or am I looking at a dedicated server?
* How much RAM am I going to need to handle all the script and database threads?
* As it's only used intensively once or twice a week, would a cloud be viable or would response times be just too low?
* Can I do this for under £60/month?

I'm ideally looking for a managed solution including backups, so I can just get on and write the thing on a stable platform which doesn't need mail, secure space, redirection or anything other than the ability to serve html and xml using php and mysql.

View 8 Replies View Related

Ajax - IPower VPS

Oct 28, 2007

I recently changed from shared hosting to VPS hosting w/ iPower.

Since the move, my AJAX checkout module stopped working. No coding changes have been made on my end. Could the issue be on the server side? Do I need to enable something in PLESK?

View 2 Replies View Related

Some Ajax Function Not Working

May 13, 2008

I got PHP working. But some of the Ajax functions it not working.

For example:
in wordpress admin, i can only use HTML mode to start a new post. I cant switch to VISUAL mode. And it was working before though.

What option do i need to compile PHP with to make it work?

Right now i have:

Quote:

'./configure' '--prefix=/opt/lsws/lsphp4' '--with-litespeed' '--with-mysql' '--with-gd' '--enable-shmop' '--enable-track-vars' '--enable-sockets' '--enable-sysvsem' '--enable-sysvshm' '--enable-magic-quotes' '--enable-mbstring' '--without-pear' '--with-bz2' '--with-curl' '--with-exec-dir=/usr/bin' '--with-freetype-dir=/usr' '--with-png-dir=/usr' '--enable-gd-native-ttf' '--without-gdbm' '--with-gettext' '--with-gmp' '--with-iconv' '--with-jpeg-dir=/usr' '--with-openssl' '--with-png' '--with-pspell' '--with-expat-dir=/usr' '--with-pcre-regex=/usr' '--with-zlib'

View 5 Replies View Related

Net 2.0, MSsql AJAX 12domains

Dec 2, 2008

I saw the suggestions to search around the site for good hosts, but it's really challenging to sort out the advertising vs real life experience and personal reviews.

Can anyone give some suggestions for a shared hosting service that can handle my needs for:
.Net 2.0
MSsql allowing remote databse connect
AJAX
about 12 domains
ability to allow several domains to work off the same database
prefer telephone tech support so I can call when things go down.
Tried Godaddy, but they don't allow remote connection to a database (good luck managing large projects)

Tried EasyCGI but not flexible enough

Tried Seekdotnet but even low traffic sites go down, they jumble which domains are connected to your ftp access (one time I had access to another clients html data), and take weeks or up to 'never' to fix hosting errors (fairly sure the errors were not due to the application.)

Heard about IXwebhosting but people don't seem to fond of them hear.

I'd really appreciate some honest input on reliable, reasonable, well supported windows hosting.

View 3 Replies View Related

Installing Relay Ajax Script

Mar 12, 2007

Trying to install this script (can't find any reasonable support method on their site)
http://ecosmear.com/relay/

I'm getting this error during install....

Database Connected....
done
Dropping tables if the exist...done
Creating tables
*relay_clients...
*relay_filesystem...
*relay_log...
*relay_permissions...
*relay_users...
done creating tables
generating random password key : xxx... done
creating first relay administrator...done
rootpath : /home/user
setting up first Virtual Directory: /home/user/filestore....done
setting up permissions....done
Ghostscript NOT enabled
ImageMagik Convert NOT enabled
thumbnailed image types : image/jpeg|image/png
Generating config files: if creation fales make sure the webserver has permission to write to here : ...
Warning: fopen(/home/user/conf.inc.php) [function.fopen]: failed to open stream: Permission denied in /home/user/public_html/relay/install/index.php on line 382
/home/user/conf.inc.php can not open

I am using cpanel/whm and installed ghostscript via rpm module.

root@server [/home/user/public_html]# chmod 755 relay
root@server [/home/user/public_html]# /scripts/checkimagemagick
ok
root@server [/home/user/public_html]# /scripts/installimagemagick
ImageMagick installed ok

The install page has this area which I left as is: ....

View 0 Replies View Related

Apache :: Timeout With Ajax-Requests Between Tomcat

Feb 20, 2013

I have an Apache Server (2.4.3) and a Tomcat Server (7.0.36) and have some Java Applications deployed.Everything works fine, but when we start a quite long Ajax process, I see in my Java Application, that a Ajax request is received and starts processing - everything fine. But during processing of the first request, I see a second request starts after 5 minutes.

View 1 Replies View Related

Modsecurity

Mar 18, 2007

I recently leased a dedicated server and it has somethign called modsecurity installed and I "think" it is causing me a slight problem. I installed Tikiwiki (using FANTASTICO as teh installer) to put a wiki on my site. Problem: When I edit a page and hit "Save." I get "FOBIDDEN you do not have permission to access /tiki/tiki-editpage.php on this server". After playing around with it all day, I finally asked my server management folks if they could figure out the issue and they said it looked like a "modsecurity" issue. If I understand correctly, modsecurity will clocu URLs that have certain characteristics.

my questions are:

1) How can I determine exactly which modsecurity rule is being violated and

2) How can I remove just taht rule so that things will work with the wiki program?

View 4 Replies View Related

ModSecurity

Nov 30, 2007

I have a site on my server that is running a Flash splash-page and ModSecurity keeps getting tripped when anyone accesses the page.

I am running the default configuration supplied by CPanel 11. The rule that is getting tripped is the XSS rule.

Here is some more info:

Code:
Pattern match "(?:(?:on(?:(?:mo(?:use(?:o(?:ver|ut)|down|move|up)|ve)|key(?:press|down|up)|c(?:hange|lick)|s(?:elec|ubmi)t|(?:un)?load|dragdrop|resize|focus|blur)W*?=|abort)|(?:l(?:owsrcW*?(?:(?:java|vb)script|shell)|ivescript)|(?:href|url)W*? ..." at ARGS:texts. [id "950004"] [msg "Cross-site Scripting (XSS) Attack. Matched signature <src="http:>"] [severity "CRITICAL"]
[30/Nov/2007:12:11:10 --0500] hFuubkMPEAcAAHVLfHgAAAAL 76.118.117.41 62197 67.15.16.7 80
--f2de940f-B--
GET /widgets/business_splash5.swf?nazvanie=Bob+Brewer&skip_intro=SKIP+INTRO&button=gpage.html&
;sloganss=&titl=&zvuk=downloads/DTH_final.mp3&pic1=http://bobbrewer.info/images/bb2_serie
s2.jpg&pic2=http://bobbrewer.info/images/bb2_series2.jpg&pic3=http://bobbrewer.info/images/bb
3_series3.jpg&pic4=http://bobbrewer.info/images/bb_series2.jpg&texts=%3cP+align%3dcenter%3e%3
cFONT+face%3d%22Comic+Sans+MS%22+color%3d%23ffff00+size%3d5%3eBobby+Brewer+Guitarist%3c/FONT%3e%3c/P%
3e++%3cP+align%3dcenter%3e%3cA+class%3dRE+href%3d%22undefined%22%3e%3cIMG+height%3d128+alt%3d%22%22+h
space%3d0+src%3d%22http://bobbrewer.info/images/bb2_series2.jpg%22+width%3d170+border%3d0%3e%3c/A%3e%
3c/P%3e&colorline1=%23BEC7DB&colorline2=%235B71A4&colorline3=%2333ffff&colorline4=&am
p;colorline5=%23BEC7DB&colorname=%2333ffff&colorline6=%235B71A4&colorline7=%23BEC7DB&
colorline8=&colorline9=%23BEC7DB&colorline10=&colorline11=%235B71A4&colorline12=%2333
ffff&colorline13=%23BEC7DB&colortitle=%23000000&colorline14=%2333ffff&colorline17=%23
33ffff&colorline17=%23BEC7DB&colorpolosa2=%235B71A4&colorpolosa1=%23BEC7DB HTTP/1.1
Accept: */*
Referer: http://bobbrewer.info/index.html
x-flash-version: 9,0,28,0
UA-CPU: x86
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 6.0)
Host: bobbrewer.info
Connection: Keep-Alive

--f2de940f-F--
HTTP/1.1 406 Not Acceptable
Content-Length: 455
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

--f2de940f-H--
Message: Access denied with code 406 (phase 2). Pattern match "(?:(?:on(?:(?:mo(?:use(?:o(?:ver|ut)|down|move|up)|ve)|key(?:press|down|up)|c(?:hange|lick)|s(?:e
lec|ubmi)t|(?:un)?load|dragdrop|resize|focus|blur)W*?=|abort)|(?:l(?:owsrcW*?(?:(?:ja
va|vb)script|shell)|ivescript)|(?:href|url)W*? ..." at ARGS:texts. [id "950004"] [msg "Cross-site Scripting (XSS) Attack. Matched signature <src="http:>"] [severity "CRITICAL"]
Action: Intercepted (phase 2)
Stopwatch: 1196442670313070 6595 (855 5738 -)
Producer: ModSecurity v2.1.3 (Apache 2.x)
Server: Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.7a DAV/2 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_auth_passthrough/2.1
The code in his web page that I think is tripping this is:

Code:
<!-- widgets/business_splash5.swf -->
<OBJECT WIDTH="550" HEIGHT="400" classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553
540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflas
h.cab#version=7,0,0,0" align="middle" valign="top">
<PARAM NAME=movie VALUE="widgets/business_splash5.swf?nazvanie=Bob+Brewer&skip
_intro=SKIP+INTRO&button=gpage.html&sloganss=&titl=&zvuk=downloads/DTH_final.mp3
&pic1=http://bobbrewer.info/images/bb2_series2.jpg&pic2=http://bobbrewer.info/im
ages/bb2_series2.jpg&pic3=http://bobbrewer.info/images/bb3_series3.jpg&pic4=http
://bobbrewer.info/images/bb_series2.jpg&texts=%3cP+align%3dcenter%3e%3cFONT+face
%3d%22Comic+Sans+MS%22+color%3d%23ffff00+size%3d5%3eBobby+Brewer+Guitarist%3c/FO
NT%3e%3c/P%3e++%3cP+align%3dcenter%3e%3cA+class%3dRE+href%3d%22undefined%22%3e%3
cIMG+height%3d128+alt%3d%22%22+hspace%3d0+src%3d%22http://bobbrewer.info/images/
bb2_series2.jpg%22+width%3d170+border%3d0%3e%3c/A%3e%3c/P%3e&colorline1=%23BEC7D
B&colorline2=%235B71A4&colorline3=%2333ffff&colorline4=&colorline5=%23BEC7DB&col
orname=%2333ffff&colorline6=%235B71A4&colorline7=%23BEC7DB&colorline8=&colorline
9=%23BEC7DB&colorline10=&colorline11=%235B71A4&colorline12=%2333ffff&colorline13
=%23BEC7DB&colortitle=%23000000&colorline14=%2333ffff&colorline17=%2333ffff&colo
rline17=%23BEC7DB&colorpolosa2=%235B71A4&colorpolosa1=%23BEC7DB">
<PARAM NAME="scale" VALUE="noscale">
<PARAM NAME=quality VALUE=high>
<PARAM name="wmode" value="transparent">

<EMBED wmode="transparent" quality="high" WIDTH="550" HEIGHT="400"
src="widgets/business_splash5.swf?nazvanie=Bob+Brewer&skip_intro=SKIP+I
NTRO&button=gpage.html&sloganss=&titl=&zvuk=downloads/DTH_final.mp3&pic1=http://
bobbrewer.info/images/bb2_series2.jpg&pic2=http://bobbrewer.info/images/bb2_seri
es2.jpg&pic3=http://bobbrewer.info/images/bb3_series3.jpg&pic4=http://bobbrewer.
info/images/bb_series2.jpg&texts=%3cP+align%3dcenter%3e%3cFONT+face%3d%22Comic+S
ans+MS%22+color%3d%23ffff00+size%3d5%3eBobby+Brewer+Guitarist%3c/FONT%3e%3c/P%3e
++%3cP+align%3dcenter%3e%3cA+class%3dRE+href%3d%22undefined%22%3e%3cIMG+height%3
d128+alt%3d%22%22+hspace%3d0+src%3d%22http://bobbrewer.info/images/bb2_series2.j
pg%22+width%3d170+border%3d0%3e%3c/A%3e%3c/P%3e&colorline1=%23BEC7DB&colorline2=
%235B71A4&colorline3=%2333ffff&colorline4=&colorline5=%23BEC7DB&colorname=%2333f
fff&colorline6=%235B71A4&colorline7=%23BEC7DB&colorline8=&colorline9=%23BEC7DB&c
olorline10=&colorline11=%235B71A4&colorline12=%2333ffff&colorline13=%23BEC7DB&co
lortitle=%23000000&colorline14=%2333ffff&colorline17=%2333ffff&colorline17=%23BE
C7DB&colorpolosa2=%235B71A4&colorpolosa1=%23BEC7DB"
type="application/x-shockwave-flash" pluginspage=[url]

View 2 Replies View Related

Install Modsecurity 2.5.0?

Feb 22, 2008

how i can install modsecurity 2.5.0?

View 3 Replies View Related

ModSecurity Log - Googlebot?

Oct 3, 2006

Upon reviewing my modsecurity log today, I found an interesting hit from google.

-------------------

Requesting IP: 66.249.65.67 is http://ws.arin.net/cgi-bin/whois.pl?...t=66.249.65.67

Date: 2006-10-03

Time: 07:10:16

Handler: mod_gzip_handler

Get: /page/index/1&show=25,07,2005?php%20echo%20$bmc_vars%5B'site_url'%5D;%20?%3E/profile.php?id=1

Mod_Security-Message: Access denied with code 406. Pattern match "echo " at THE_REQUEST

Mod_Security-Action: 406

------------

The rule that set off this 406 response was:

SecFilterSelective THE_REQUEST "echo "

What I find interesting is that I do not have any such URL structure on this website that google requested.

View 2 Replies View Related

Ruleset For Modsecurity

Oct 20, 2007

where I can find or get the latest, and with better design ruleset for modsecurity? I have one, but it is really old.

View 1 Replies View Related

How To Install Modsecurity-apache_2.5.6

Sep 19, 2008

i installed it from whm

cpanel > Manage Plugins > Name: modsecurity > Install and Keep Updated

but its not working
( i think this is add-one for make configuration in Plugins options )

so i want to install it from ssh

i have apache 2.2.9
php 5

View 10 Replies View Related

Plesk 12.x / Linux :: Logrotate For Modsecurity

Aug 1, 2014

I want to create logrotate in logrotate.d for modsecurity log.

I find following code, but it don't works.

Code:
/var/log/modsec_audit.log {
rotate 7
compress
missingok
notifempty
sharedscripts
postrotate
/sbin/service httpd reload > /dev/null 2>/dev/null || true
endscript
}

View 1 Replies View Related

ModSecurity: Access Denied With Code 400 (phase 2)

Oct 17, 2007

We have a small Hosting reseller account at eNom. We have a new customer that moved his website from another hosting company to ours. The website is on a shared IP. Enom also uses a internal IP for internal use associated to the domain.

The problem we have is that AOL users can not see the website. As far as we can tell no other ISP's are having this problem. Everyone can see it except AOL users.

When AOL users go to the site they get "Page can not be found". After several calls to eNom support and them triple checking the DNS we still have the problem.

I looked at the error log for the website this morning. I found several errors. I looked up the IP's with the errors and they all pointed back to AOL.. See below for two examples of the errors....

Is this a server problem or DNS?

What do these errors mean and what do I do about it?

The domain is http://2hotlicks.com . They sell Hot Sauce.. Would AOL block it because of the keywords in the Domain name?

[Wed Oct 17 08:11:56 2007] [error] [client 207.200.116.7] ModSecurity: Access denied with code 400 (phase 2). Pattern match "(?:\bhttp.(?:0\.9|1\.[01])|<(?:html|meta)\b)" at REQUEST_HEADERS:Via. [id "950911"] [msg "HTTP Response Splitting Attack. Matched signature <http/1.1>"] [severity "ALERT"] [hostname "www.2hotlicks.com"] [uri "/"] [unique_id "uPWvAgoHAlYAAA25N5AAAAAI"]

[Tue Oct 16 13:11:20 2007] [error] [client 207.200.116.137] ModSecurity: Access denied with code 400 (phase 2). Pattern match "(?:\bhttp.(?:0\.9|1\.[01])|<(?:html|meta)\b)" at REQUEST_HEADERS:Via. [id "950911"] [msg "HTTP Response Splitting Attack. Matched signature <http/1.1>"] [severity "ALERT"] [hostname "www.2hotlicks.com"] [uri "/combos.htm"] [unique_id "yddhwAoHAlYAAEEfgyEAAAAi"]

View 2 Replies View Related

Plesk 12.x / Linux :: Can Have WAF ModSecurity And Firewall Running Together

May 26, 2015

I currently have the Web Application Firewall (ModSecurity) installed but would like a visual interface to block IP's, subnets etc.. Can I install the Plesk firewall as well without any conflict with the Web Application Firewall?

View 3 Replies View Related

ModSecurity Web Application Firewall For Apache - No Button

Sep 7, 2014

After install the ModSecurity Web Application Firewall for Apache no button for manageing module is displayed in plesk.

Installation was successful. How can I repair the button in plesk / webbased manage mod_security?

View 13 Replies View Related

Plesk 12.x / Linux :: ModSecurity With Atomic Rules

Jun 9, 2015

I have a Real Time Web Application Security Rules Subscription. I change the ModSecurity Rule Setup and add the Atomic LoginData to Plesk. All looks fine but the ModSecurity Log is now empty.

- Debian 7 with all Updates
- Plesk Version 12.0.18 Update #49

Output from: ~# aum -df upgrade asl

[URL] ....

View 1 Replies View Related

Modsecurity Clamav Upload Scanning Doesn't Work

Jul 12, 2007

So I've been working on getting the modsecurity upload scan function to work for over 4 hours now and i'm done with this junk to say the least.

Using modsec 1.9
Cpanel 10x
Apache 1.3

in the modsec.conf

SecUploadDir /tmp
SecUploadApproveScript /usr/local/apache/htdocs/upload_scan.pl

All I get in the audit_log is:

Access denied with code 406. Error verifying files: Received no output from the approver script (execution failed?) "/usr/local/apache/htdocs/upload_scan.pl" ....

View 1 Replies View Related

Plesk 12.x / Linux :: ModSecurity Firewall Log File Huge?

Oct 24, 2014

I have enabled modsecurity system and in 1 day the modsec_audit.log file has grown to more than 700Mb. Is there any way to reduce the number of messages that this module logs?

View 4 Replies View Related

Plesk 12.x / Linux :: ModSecurity Subscription Rule Set Error

Jun 12, 2014

Error when trying to set atomic subscription rule:

Failed to install the ModSecurity rule set: SecReadStateLimit is depricated, use SecConnReadStateLimit instead.
Syntax error on line 70 of /etc/httpd/conf/modsecurity.d/rules/atomic/modsec/00_asl_zz_strict.conf:
Error creating rule: Could not add entry "127.0.0.0/8" from: 127.0.0.0/8.

In directory /etc/httpd/conf/modsecurity.d/rules I have only: atomic.new modsecurity_crs-plesk tortix tortix.backup

There is no file 00_asl_zz_strict.conf

View 8 Replies View Related

Plesk 12.x / Linux :: Atomic Basic ModSecurity Error

Jun 18, 2014

Once Atomic Basic is enabled, the following error appears:

Code:

Failed to install the ModSecurity rule set: modsecurity_ctl failed: gpg: key 4520AFA9: "Atomicorp (Atomicorp Official Signing Key) <support@atomicorp.com>" not changed gpg: Total number processed: 1 gpg: unchanged: 1 gpg: Signature made Tue Jun 17 16:53:49 2014 CEST using RSA key ID 4520AFA9 gpg: Good signature from "Atomicorp (Atomicorp Official Signing Key)

[Code] .....

OS Debian 7.5
Plesk version 12.0.18 Update #4, last updated at June 18, 2014 02:51 AM

View 19 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved