Shared Hosting
Shared HostingKnowledgebase
Portal Home > Knowledgebase > Articles Database > Creating a specific mod_sec rule
Creating a specific mod_sec rule
 |
 |
 |
Posted by Ronald_Craft, 06-05-2012, 10:39 AM Heya, I've been working towards trying to block the RePress plugin utilizing mod_sec, but thus far have had little success in formulating a rule that will actually block it. The problem I'm running into is that it utilizes permalinks in Wordpress and as such the URL can always be modified - so it can be accessed at domain.com/repress or domain.com/39495mdaswi or whatever they want it to be. So, that leaves me stumped on how I'd actually prevent said plugin from working via mod_sec (if it's even possible). The other possibility would be to block access to it in Wordpress (/wp-admin/options-general\.php\?page=repress/repress\.php) but I've had little success with that either - although, that's the less ideal approach since the plugin could still be used with some work-arounds. Can anyone point me in the right direction on this? I'm not even particular if it's going to be possible to do this via mod_sec, but I believe this is the best (if not the only) route available.
Posted by miglen, 08-24-2012, 12:32 PM Try adding or to your mod_security.conf
Add to Favourites 
Print this Article
Also Read
