Hope your all having a lovely day!
I have an instance of Modx installed on a server using ModSecurity.
I'm having no end of issues trying to get the site functioning correctly. Every time I run into an issue I then have to go into the logs, find all the information I need and then whitelist.
For other CMS' there is normally a ruleset that can just be pasted into the Apache config.
Does anyone know where I can find a ruleset for Modx?
Any help will be greatly appreciated.
Turning off mod_security for the MODX directories, or at least the Manager directory might solve your problems if it's an option for you.
I went through a month of modsecurity hell because the hoster applied some new rules. It was terrible, honestly.
I have a lot of text in an MIGX structure, several pages of different text, and it was a slow process of triggering each new rule, waiting for the hoster to remove it, then triggering another one.
Try to follow BobRay's advice, it could help a lot.
just trigger and report, tell them to check you log every dang morning when they get into work. otherwise its email, wait, email, wait, it was terrible
tell them you will be triggering every day till it works. btw to do what BobRay said will NOT affect your site security in any appreciable way