Problems with mod_security and mod_security2
October 6th, 2009
If any client site having problems with mod_security rules we can add following directives to disable mod_security for his site.
Just add following lines to his virtual host entry :
<IfModule mod_security.c>
SecFilterEngine Off
</IfModule>
For mod_security2
<IfModule mod_security2.c>
SecRuleEngine Off
</IfModule>
Note: Mod_security implemented for good reason like preventing spamming through forms and to protect dos attacks. Don’t disable by if client request to disable it. we need to check what client is doing and what errors he is getting.