Mysterious 403, 404, 406, 500 or "Page not found" errors depending on submitted content

Last modified: April 25, 2008 - 15:18

When submitting certain words in content, you receive a 403, 404, 406, 500 or "Page not found" error message.

This behaviour is most likely caused by the Apache module mod_security. Depending on its filter settings, phrases that trip the module include

lynx, perl, mother, select from, table, cc:, and many more.

Ask your host to tone down the mod_security settings.

Alternatively you can try to add the following to .htaccess:

# Turn off mod_security filtering.
<IfModule mod_security.c>
  SecFilterEngine Off
</IfModule>

This will turn off filtering by mod_security.

Not all hosts will allow this, so you may need to contact your hosting provider.

» Login or register to post comments

ModSecurity 2

2440media2 - February 12, 2009 - 19:00

The syntax for ModSecurity2 is a little different.

# Turn off mod_security filtering.
<IfModule mod_security2.c>
  SecRuleEngine Off
</IfModule>

For me it didn't work in the .htaccess (.htaccess: SecRuleEngine not allowed here). So, I had to turn it off from the modsec2.conf

Login or register to post comments

Drupal is a registered trademark of Dries Buytaert.