False positive block by ModSecurity

This discussion is related to the Pockets addon.

Hello people,

When a Pocket unit have as body adsense code, then ModSecurity block the saving php-process and block my IP. My hosting company said something about XSS Filter. I don't have this false positive alarm when I save as body a dump word.

Maybe you may consider to recode this process. In my case, the hosting company doesn't allow me to disable this rule because they think that is a huge security issue.

Thank you in advance!

Comments

  • x00x00 MVP
    edited April 2018

    Server security done on the he server level not the framework level, so it is not for the framework or addon to negate this.

    grep is your friend.

Sign In or Register to comment.