Disable modsecurity for a particular domain

Internal Server error
error log is as follows:
ModSecurity: Output filter: Response body too large (over limit of 524288, total not specified). [hostname “domain.com”] [uri “/modules/popnupblog/index.php”] [unique_id “Tu6zGUPeYikAACRZGpQAAAAA”]

Make a file “modsecurity_crs_10_config.conf” in /usr/local/apache/conf
Add the foll rule to that domain

SecRule SERVER_NAME “domain.com” phase:1,nolog,allow,ctl:ruleEngine=off

Add the file path in modsec2.conf

Include “/usr/local/apache/conf/modsecurity_crs_10_config.conf”

do /usr/local/apache/bin/apachectl configtest to check syntax
Restart apache..
It works!!!

Leave a Reply

Your email address will not be published. Required fields are marked *