-
- 105 Posts
So I had this same issue again. But this time it was:
I tried modifying the mod_security rules using the link mentioned, but got Apache errors. So I contacted my hosting company and they said I can’t modify the SecFilterEngine and SecFilterScanPOST directives. So they went in and had to change some permission settings. It still didn’t work because it was hitting a second mod_security issue. So they whitelisted my domain for that rule.
So it works now again. But is that safe to have the hosting company whitelisting my domain for security rules?
You may or may not want to use the code I write. It's probably all against the syntax rules of php and MODx.
Carpet Cleaning
In the vast majority of cases these security settings only provide some level of protection against sloppy code. MODx core is fine, as are the major third-party snippets. Just pay attention to proper coding practices in any code you write, particularly the handling of any user form input, and you’ll be fine.
-
- 105 Posts
You may or may not want to use the code I write. It's probably all against the syntax rules of php and MODx.
Carpet Cleaning