Inhalte aufrufen

  • Mitglieder
  • Marketplace
  • Blogs

SmartStore.Net behind mod_security

Eröffnet von Guest_pr8_* , Oct 24 2016 03:14
mod_security

  • Bitte melden Sie sich an, um eine Antwort zu verfassen.
1 Antwort zu diesem Thema

#1 Guest_pr8_*

Guest_pr8_*
  • Guests

Geschrieben: 24 October 2016 - 15:14

Hi everyone,

I'm new here, we are testing SmartStore for our needs, and when we placed it behind a web application firewall that uses mod_security we were blocked from making new orders. On inspecting Mod_security log files, it indicated that it violated the following filters:

960015
981204
981176
981173

960010

After configuring our web application firewall to skip the indicated filters, the shopping cart worked fine.

 

My question is it all right to skip these filters?

 

Maybe for filters that are known to produce frequent false positives like 960015 and 981173 would be fine to skip, but the filters that   do not usually give false positive - 981204,981176,960010 would it be safe to skip these too?

 

Is it possible to re-write the code to avoid violating these filters?

 

Thanks.

 


#2 Murat Cakir

Murat Cakir

    SmartStore AG

  • Administrators
  • 1118 Beiträge

Geschrieben: 24 October 2016 - 19:37

I don't know much about your environment, but quick googling told me that it should be ok to skip these rules.


Murat Cakir
SmartStore AG

Zurück zu General Smartstore
  1. Smartstore Community
  2. Smartstore (English)
  3. General Smartstore
  4. Datenschutzerklärung
  5. Smartstore - Forum - Blogs - Marketplace (SCM) AGB ·