[cacti/el4] add mod_security overrides
Ken Dreyer
ktdreyer at fedoraproject.org
Fri Oct 28 02:56:01 UTC 2011
commit 75b8883bd9c3834c02f276740ee58f1a65983e1b
Author: Ken Dreyer <ktdreyer at ktdreyer.com>
Date: Thu Oct 27 20:52:18 2011 -0600
add mod_security overrides
mod_security blocks a cacti upgrade procedure. Override and document
the two rules that cause problems. This could probably be tightened
down to apply only to the "install" directory.
cacti-httpd.conf | 8 ++++++++
1 files changed, 8 insertions(+), 0 deletions(-)
---
diff --git a/cacti-httpd.conf b/cacti-httpd.conf
index 9187aa6..4d4c26b 100644
--- a/cacti-httpd.conf
+++ b/cacti-httpd.conf
@@ -11,6 +11,14 @@ Alias /cacti /usr/share/cacti
Order Deny,Allow
Deny from all
Allow from 127.0.0.1
+
+ # mod_security overrides
+ <IfModule security2_module>
+ # allow POST of application/x-www-form-urlencoded during install
+ SecRuleRemoveById 960010
+ # permit the specification of the rrdtool paths during install
+ SecRuleRemoveById 900011
+ </IfModule>
</Directory>
More information about the scm-commits
mailing list