Commit 9fcdd201 authored by Zen Fu's avatar Zen Fu
Browse files

Remove ModSec rules that triggered after migration (sysadmin#17870)

All these rules were triggered, most possibly as false positives, after
Weblate migration to containerized setup. I have not reviewed each one
individually because (1) there are too many and our capacity is low and
(2) they are preventing the website from functioning correctly. My
current conclusion is that it's better to remove them for now and have
the website working.
parent dbaf3731
Pipeline #3055 failed with stage
in 2 minutes and 56 seconds
......@@ -18,23 +18,58 @@
ErrorDocument 403 "<h2>Forbidden</h2><p>Our slightly paranoid security system did not trust what you were doing there and blocked your request. If you feel this is incorrect, please contact tails-sysadmins [at] boum [dot] org. Be sure to mention the exact URL you are trying to reach (copy paste the address bar in your browser), as well as the time (including your timezone), so we can search our logs to see what went wrong. Our apologies for the inconvenience.</p>"
SecRuleEngine On
SecRuleRemoveById 911100
SecRuleRemoveById 913100
SecRuleRemoveById 913101
SecRuleRemoveById 913102
SecRuleRemoveById 913110
SecRuleRemoveById 920170
SecRuleRemoveById 920180
SecRuleRemoveById 920220
SecRuleRemoveById 920230
SecRuleRemoveById 920270
SecRuleRemoveById 920271
SecRuleRemoveById 920300
SecRuleRemoveById 920320
SecRuleRemoveById 920340
SecRuleRemoveById 920341
SecRuleRemoveById 920420
SecRuleRemoveById 920440
SecRuleRemoveById 920450
SecRuleRemoveById 920500
SecRuleRemoveById 921110
SecRuleRemoveById 921120
SecRuleRemoveById 921150
SecRuleRemoveById 921151
SecRuleRemoveById 921160
SecRuleRemoveById 930100
SecRuleRemoveById 930110
SecRuleRemoveById 930120
SecRuleRemoveById 930130
SecRuleRemoveById 931130
SecRuleRemoveById 932100
SecRuleRemoveById 932105
SecRuleRemoveById 932110
SecRuleRemoveById 932115
SecRuleRemoveById 932120
SecRuleRemoveById 932130
SecRuleRemoveById 932150
SecRuleRemoveById 932160
SecRuleRemoveById 932170
SecRuleRemoveById 932171
SecRuleRemoveById 932200
SecRuleRemoveById 933100
SecRuleRemoveById 933150
SecRuleRemoveById 933160
SecRuleRemoveById 933210
SecRuleRemoveById 941100
SecRuleRemoveById 941110
SecRuleRemoveById 941120
SecRuleRemoveById 941130
SecRuleRemoveById 941140
SecRuleRemoveById 941150
SecRuleRemoveById 941160
SecRuleRemoveById 941170
SecRuleRemoveById 941180
SecRuleRemoveById 941310
SecRuleRemoveById 941320
......@@ -44,28 +79,39 @@
SecRuleRemoveById 942110
SecRuleRemoveById 942120
SecRuleRemoveById 942130
SecRuleRemoveById 942140
SecRuleRemoveById 942150
SecRuleRemoveById 942160
SecRuleRemoveById 942180
SecRuleRemoveById 942190
SecRuleRemoveById 942200
SecRuleRemoveById 942210
SecRuleRemoveById 942260
SecRuleRemoveById 942300
SecRuleRemoveById 942310
SecRuleRemoveById 942330
SecRuleRemoveById 942340
SecRuleRemoveById 942350
SecRuleRemoveById 942360
SecRuleRemoveById 942370
SecRuleRemoveById 942380
SecRuleRemoveById 942390
SecRuleRemoveById 942400
SecRuleRemoveById 942410
SecRuleRemoveById 942430
SecRuleRemoveById 942440
SecRuleRemoveById 942450
SecRuleRemoveById 942510
SecRuleRemoveById 943120
SecRuleRemoveById 944240
SecRuleRemoveById 949110
SecRuleRemoveById 950100
SecRuleRemoveById 950109
SecRuleRemoveById 950120
SecRuleRemoveById 950901
SecRuleRemoveById 951240
SecRuleRemoveById 952100
SecRuleRemoveById 953110
SecRuleRemoveById 960024
SecRuleRemoveById 960035
SecRuleRemoveById 960335
......@@ -84,7 +130,6 @@
SecRuleRemoveById 981318
SecRuleUpdateActionById 920280 "deny,status:403"
SecRuleUpdateActionById 920290 "deny,status:403"
SecRuleUpdateActionById 920300 "deny,status:403"
SecRuleUpdateActionById 920350 "deny,status:403"
# XXX: Always ensure Cookies have "Secure" set (JAH 2012/1)
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment