Skip to content
Snippets Groups Projects
Commit 789abd48 authored by ale's avatar ale
Browse files

Disable Accept: charset mod_security checks 

These interfere with JSON-LD activitypub requests because
apparently the '; profile="..."' part is matched by that humongous
rule 920600 regexp and ModSecurity thinks it's a charset.
parent 88713e0c
No related branches found
No related tags found
No related merge requests found
Pipeline #60830 passed
Stage: build
Stage: container-test
Stage: release
Hide whitespace changes
Inline Side-by-side
docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
+ 4
0
View file @ 789abd48
......@@ -17,6 +17,10 @@ SecRuleRemoveById 950130
SecRuleRemoveById 941160
SecRuleRemoveById 941180
# The Accept: charset check gets confused by some ActivityPub
# headers (that specify a JSON-LD profile), just disable it.
SecRuleRemoveById 920600
# ModSec Rule Exclusion: 920273 : Invalid character in request (outside of very strict set)
# ModSec Rule Exclusion: 942432 : Restricted SQL Character Anomaly Detection (args):
# number of special characters exceeded (2) (severity: NONE/UNKOWN)
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment