Closed
Description
As you know there are some isues with plausible and modsecurity which block plausible by default.
Here are some custom rules, feel free to use them or to enhance them:
# Autoriser text/plain pour la route /api/event
SecRule REQUEST_URI "@streq /api/event" \
"id:1000005,phase:1,t:none,pass,nolog,ctl:requestBodyAccess=On"
# Désactiver les règles spécifiques uniquement pour /api/event
SecRule REQUEST_URI "@streq /api/event" \
"id:1000006,phase:1,t:none,pass,nolog,ctl:ruleRemoveById=920420,ctl:ruleRemoveById=949110"
# Autoriser toutes les requêtes .com pour l'agent utilisateur Plausible
SecRule REQUEST_HEADERS:User-Agent "@contains Plausible" \
"id:1000008,phase:1,t:none,pass,nolog,ctl:ruleRemoveById=920440,ctl:ruleRemoveById=949110"
# Autoriser l'accès aux requêtes .com pour l'agent utilisateur Plausible
SecRule REQUEST_URI "@contains .com" \
"id:1000010,phase:1,t:none,pass,nolog,ctl:ruleRemoveById=920440,ctl:ruleRemoveById=949110"
Thanks for your feedback for those who use modsecurity
Metadata
Metadata
Assignees
Labels
No labels