how to allow phpMyAdmin on modsecurity_crs_41_sql_injection_attacks.conf

September 2, 2015 5.9k views
Apache Security MySQL System Tools Firewall Networking Applications PHP Ubuntu

hello, i have a problem.
  when I want to enter the phpMyAdmin database then appears forbidden on the browser. I know this because modsecuritycrs41sqlinjection_attacks.conf module sql block. so how can I allow phpMyAdmin and modules modsec only block extraneous files outside of the directory /usr/share/phpmyadmin ?

1 Answer

Turn off mod_security for PHPMyAdmin by adding the following in the virtual host file:

<Directory /usr/share/phpmyadmin>
SecRuleEngine Off
Have another answer? Share your knowledge.