Users December 2009

users@lists.roundcube.net

22 participants
12 discussions

Re: [RCU] [RCD] recurring problem at the level of authentication and total absence of log
by fakessh 02 Dec '09

02 Dec '09

On Wed, 2 Dec 2009 20:22:40 +0100, till <klimpong(a)gmail.com> wrote: > On Wed, Dec 2, 2009 at 8:11 PM, fakessh <fakessh(a)fakessh.eu> wrote: >> On Wed, 2 Dec 2009 11:04:03 -0700, gnul <nullchar(a)gmail.com> wrote: >>> I have not run RoundCube under mod_security, but from what I know >>> about mod_security, I am sure it can be done. >>> >>> mod_security simply applies a [long] list of rules to the contents of >>> each request (GET/POST/HEAD/etc) including the header. >>> >>> Depending on your ruleset, you often have to add exceptions for >>> certain applications, and/or disable entire rules server-wide. What >>> I've done in the past is: tail -F error_log while you use the >>> application. Then you add exceptions for the uri (e.g. "/roundcube") >>> or hostname or disable certain rules inside the modsecurity*.conf >>> files. >>> >> >> Thank you for your interest in my problem >> how easy to apply new rules to mod_security ? > > I think you can do it in .htaccess. But you should check with your > provider. > > Till I can edit my file myself .htaccess . I have root access on the machine _______________________________________________ List info: http://lists.roundcube.net/users/

1 0

Re: [RCU] [RCD] recurring problem at the level of authentication and total absence of log
by fakessh 02 Dec '09

02 Dec '09

On Wed, 2 Dec 2009 08:17:14 -0600, chasd <chasd(a)silveroaks.com> wrote: > Sorry about my last message, I made a mistake not to send it to the > list. > >> here's nobody else who encounters the same problems with the >> release 0.3.1 and >> mod_security. here is the problem for tests ordered by Charles, we >> must stop >> roundcube and now I have three accounts running on production with >> roundcube >> disables mod_security >> >> It bothers me to stop my webmail service for several hours >> >> if anyone has a solution, an official patch >> >> a good suggestion > > I think the issue is that no one else on the list is running > mod_security. I think you are the first to run into the issue. > > If someone else is running RC and mod_security, please speak up. I listen to any suggestions regarding my problem with mod_security I made some test on XP and VISTA successfully with mod_security disabled thanks for all your feedbacks _______________________________________________ List info: http://lists.roundcube.net/users/

2 2

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Users December 2009