Share

Question

hello, i have a problem.
when I want to enter the phpMyAdmin database then appears forbidden on the browser. I know this because modsecuritycrs41sqlinjection_attacks.conf module sql block. so how can I allow phpMyAdmin and modules modsec only block extraneous files outside of the directory /usr/share/phpmyadmin ?

Accepted Answer

jesin September 7, 2015

Turn off mod_security for PHPMyAdmin by adding the following in the virtual host file:

<Directory /usr/share/phpmyadmin>
SecRuleEngine Off
</Directory>

Reply

dzikriyana September 9, 2015

where is virtual host file, location ? whether in /etc/apache2/conf.d/phpmyadmin.conf?
- jesin September 15, 2015
  
  Look for the file at /etc/phpmyadmin/apache.conf.
dzikriyana September 10, 2015

i got fail, SecRuleEngine not works

Answer 2

dzikriyana September 9, 2015

where is virtual host file, location ? whether in /etc/apache2/conf.d/phpmyadmin.conf?
- jesin September 15, 2015
  
  Look for the file at /etc/phpmyadmin/apache.conf.
dzikriyana September 10, 2015

i got fail, SecRuleEngine not works

how to allow phpMyAdmin on modsecurity_crs_41_sql_injection_attacks.conf

Leave a Comment

Share

Share your Question

how to allow phpMyAdmin on modsecurity_crs_41_sql_injection_attacks.conf

Leave a Comment

Related Questions

Almost there!

Report a Bug