Thread: Users can disable mod_security
View Single Post
  #1  
Old 06-18-2012, 10:10 PM
Jesse Jesse is offline
Member
  
Join Date: May 2012
Posts: 10
Default Users can disable mod_security
Hey guys,

At the moment our clients can disable mod_security completely through the use of SecFilterEngine Off in their .htaccess. Ideally we'd prefer our clients contact us to whitelist the rules they're triggering, than disable the entire platform.

Under apache SecFilterEngine Off doesn't work, is it possible to disable it from working under LS?

Cheers
Reply With Quote