Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
I'm currently experimenting with the Apache security module (application firewall) - another thing I should've added years ago. Theoretically it should protect from standard/simple hacking techniques and various service abuse. Please let me know if something stops working.
Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
(31 May 2021, 18:56 )Like Ra Wrote: another thing I should've added years ago. Theoretically it should protect from standard/simple hacking techniques and various service abuse.
Checked the logs... I definitely should have done it before 😂
Posts: 392
Thanks received: 177
Thanks given: 144
Joined: Dec 2019
(31 May 2021, 18:56 )Like Ra Wrote: I'm currently experimenting with the Apache security module (application firewall) - another thing I should've added years ago. Theoretically it should protect from standard/simple hacking techniques and various service abuse. Please let me know if something stops working.
( ͡° ͜ʖ ͡°)
Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
01 Jun 2021, 11:25
(This post was last modified: 02 Jun 2021, 01:12 by Like Ra.)
Guys, let me know if any of your actions get denied. I've just disabled two security filters, which blocked post quoting. Yeah, everything "better" comes with a price tag...
Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
(31 May 2021, 18:56 )Like Ra Wrote: I'm currently experimenting with the Apache security module (application firewall)
Fighting false positives is ... f...fun ... CRS is not quite compatible with WordPress.
Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
04 Jun 2021, 00:14
(This post was last modified: 04 Jun 2021, 00:15 by Like Ra.)
Cumulative effect of the tweaked plugin and the application firewall:
Very satisfying I must say 😎
Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
If someone got "Forbidden - you are not allowed to access this resource" while uploading a file to the forum - this should be fixed now. It was a false positive for the "MULTIPART_UNMATCHED_BOUNDARY - Multipart parser detected a possible unmatched boundary" security rule.
Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
09 Jun 2021, 12:51
(This post was last modified: 09 Jun 2021, 18:33 by Like Ra.)
The forum is barely responding today - no ideas why yet. Checking everywhere.
Posts: 26,144
Thanks received: 13048
Thanks given: 7007
Joined: Jul 2006
09 Jun 2021, 14:50
(This post was last modified: 09 Jun 2021, 14:50 by Like Ra.)
For some reason after some time PHP stops replying to Apache...
Posts: 404
Thanks received: 201
Thanks given: 148
Joined: Sep 2013
(09 Jun 2021, 14:50 )Like Ra Wrote: For some reason after some time PHP stops replying to Apache...
it started yesterday.
it was not even possible to mail you about it.
at the moment it seems to work properly.
thanks for all the effort you put in this.