search

klaubert / waf-fle

WAF-FLE, ModSecurity Console
http://waf-fle.org
GNU General Public License v2.0
139 stars 73 forks source link

error 403 when start service mlog2waffle - modsecurity core 2.2.9 #42

Open kespinosa opened 9 years ago

kespinosa commented 9 years ago

when start service mlog2waffle, the apache send error 403 by modsecurity

klaubert commented 9 years ago

kespinosa,

check if you have created a exception to CRS, needed to mlog2waffle use PUT method. More detail in page 15,16 of deployment guide,

For example, you can create a "modsecurity_crs_11_waffle.conf" file with rule below: SecRule REQUEST_FILENAME '^/controller/$' \ "phase:1,msg:'Match',id:99999,nolog,noauditlog,allow,ctl:RuleEngine=On"

Double check if you have used the username/password created in waf-fle reflected to mlog2waffle.conf.

Best regards,

Klaubert

On Tue, Jul 7, 2015 at 11:31 PM, kespinosa notifications@github.com wrote:

when start service mlog2waffle, the apache send error 403 by modsecurity

— Reply to this email directly or view it on GitHub https://github.com/klaubert/waf-fle/issues/42.

fa4fahmed15 commented 4 years ago

/usr/sbin/mlog2waffle

Starting up mlog2waffle in "tail" mode, using config file /etc/mlog2waffle.conf Error in HTTP connection: 500 Internal Server Error