mod_security ASL issues - 403 error.
We have a new server up and running with Cent OS 5.2 and we are running ASL for security and our server keeps serving up 403 errors (and the end user see's the apache default web page) when people are inputting data on php input fields. Most of the errors show as XSS injection threats (which they are not).
If I disable litespeed and go back to apache the problems stop. I have also disabled several rules from mod_security and it helps sometimes. But we REALLY need to have this security in place on our server.
One another annoying issue is when bringing up hordemail it just gives us a blank page unless of course I turn off litespeed and enable apache.
Has any one figured out a way to deal with these mod_security issues with litespeed?
Litespeed tech was helping me with this problem but I think that there solution was to just disable the offending rules which just concerns me at this time.
Last edited by VortMax; 05-24-2009 at 08:32 AM..