Reloadr icon indicating copy to clipboard operation
Reloadr copied to clipboard
verified publisher icon dbergey

Potential ModSecurity Conflict

Open Blindmikey opened this issue 10 years ago • 0 comments

if server paths are defined relatively, eg)

Reloadr.go({
            server: [
                '../../lib/scss/*.scss',
                ],
            ...
 });

ModSecurity will likely deny the request, serving up a 403 Forbidden. This is based on the Atomicorp.com WAF Rules on Generic Path Recursion. Which is any REQUEST_URI that matches positive against:

rx (/products/index\\.php\\?gallery=|connector=\\.\\./\\.\\./connectors|/admin/structure/views/|phpthumb/phpthumb\\.php\\?src=\\.\\./.*(?:uploads|images)|/site-builder/)

Blindmikey avatar Mar 30 '15 05:03 Blindmikey