Problems with PIWIK and modsecurity
Start >> Domains >> Web Application Firewall for DOMAIN
Deactivating Rule-IDs >>>
/etc/httpd/conf/plesk.conf.d/vhosts/DOMAIN.conf
<IfModule mod_security2.c>
SecRuleRemoveById 340702
</IfModule>
error_log >>>
[Thu Feb 02 14:55:09.151817 2017] [:error] [pid 5470:tid 140097085183744] [client IP********] ModSecurity: Access denied
with code 403 (phase 2). Match of "beginsWith http://%{SERVERNAME}/" against "MATCHEDVAR" required. [file "/etc/httpd/conf
/modsecurity.d/rules/tortix/modsec/50pleskbasicaslrules.conf"] [line "1825"] [id "340702"] [rev "2"] [msg "Protected by
Atomicorp.com Basic Non-Realtime WAF Rules: Remote File Injection attempt in ARGS"] [severity "CRITICAL"] [hostname "piwik.k
reta.com"] [uri "/piwik.php"] [unique_id "WJM6PbQOB6J6upmXBFg6hAAAAM8"]
SecRuleRemoveById <<< Not functional as a switch in the configuration of httpd @ CentOS7
Regards, Mario
mario
shared this idea
Thank you for your input!
As I see, Piwik is incompatible with ModSecurity (https://piwik.org/faq/troubleshooting/faq_100/). Also I found closed issue on GitHub: https://github.com/SpiderLabs/ModSecurity/issues/600, maybe it could help you.
Note: only feature requests are allowed here, so we would appreciate if you post bugs and issues on our forum at https://talk.plesk.com. We are closing this request, since it does not contain any feature suggestions.
— AY