Back to limesurvey.org

Welcome to the LimeSurvey Community Forum

Ask the community, share ideas, and connect with other LimeSurvey users!

ModSecurity Rules

More
2 weeks 6 days ago #274329 by blocka
ModSecurity Rules was created by blocka
Please help us help you and fill where relevant:
Your LimeSurvey version: 5.x
Own server or LimeSurvey hosting: Own
Survey theme/template: All default ones
==================
i'm wondering if anyone else has experience with the default OWASP ModSecurity rules resulting in blocking of access to LS 5.x? If so, I'm looking for guidance on what rules to negate or how to best handle the triggering of the rules for LimeSurvey 5.x

Please Log in to join the conversation.

Partner Banner
More
2 weeks 19 hours ago #274351 by jelo
Replied by jelo on topic ModSecurity Rules
ModSecurity rules (OWASP and others) often breaks parts of LimeSurvey. That is the case since the beginning of LimeSurvey.

Usually you check the audit log file to identify the rules which cause trouble and then exclude these rules via their ID for the URL of LimeSurvey.
Nothing special for LimeSurvey. Just consult the mod security manual or tutorial.



 
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users

Please Log in to join the conversation.

Moderators: tpartnerholch

Lime-years ahead

Online-surveys for every purse and purpose

Pricing & Plans
Get started

Legal

About Us

Open Source