ModSecurity: Access denied with code 406 (phase 2). Pattern match

This error is getting due to the mod_security enabled in the server, We can either disable the mod_security via easy apache

we can try to fix this issue by diasbling the mod_security for the particular domain, please see the steps pasted below,

Note: It would be an issue  with the wp-social-toolbar plugin installed in the wordpress

OR second way to disable mod_security for a particular domain

=====================

open   /usr/local/apache/conf/modsec2.user.conf  and add

# ConfigServer ModSecurity whitelist file
Include /usr/local/apache/conf/modsec2.whitelist.conf

and the open

/usr/local/apache/conf/modsec2.whitelist.conf

and add
# ConfigServer ModSecurity whitelist file
SecRule SERVER_NAME “domainname” phase:1,nolog,allow,ctl:ruleEngine=off
=======================

Check the below steps if the above one is not working..

=======================
“Well, i would suggest to disable mod_security particularly for that domain alone using .htaccess.
So, that the other accounts in server will have a good mod_sec rules and the particular account will be relaxed from it.
Add below in .htaccess to make it happen.”

SecFilterEngine Off
SecAuditEngine Off
===================

MOD_SECURITY INSTALLATION ON CENTOS
====================================

============================================
# yum install httpd-devel
# yum install pcre-devel
=============================================

In httpd.conf file
===================

(suPHP_UserGroup ilovefuz ilovefuz
</IfModule> )
——–
<IfModule mod_security2.c>
SecRuleEngine Off
</IfModule>

In .htaccess file
================

Mod security
————
(htaccess)
<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>

Leave a Reply

Your email address will not be published. Required fields are marked *