godsofchaos

Hi Aaron, you can also use the CMC plugin if you have Cpanel as it can automatically apply custom rules according to domain/domains.

It gives you a GUI through which you can apply the rules I mentioned along with any other rules globally/locally for domains/subdomains etc.

It is by far the easiest way to manage Mod Security Rules and mess with it in general. ??

Find It here: https://configserver.com/cp/cmc.html

Correct that should work nicely. Combining them into 1 file (through minify settings) should also work nicely and will rewrite them on the fly and will host them on the CDN at the same time.

Another quick update: this is what is presently what I am using on my vps for mod_security.

<LocationMatch "/wp-admin/post.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/admin-ajax.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/page.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/options.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/theme-editor.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-content/plugins/">
  SecRuleRemoveById 300015 340151 1234234 340153 1234234 300016 300017 950907 950005 950006 960008 960011 960904 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-includes/">
  SecRuleRemoveById 960010 960012 950006 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-content/themes/">
  SecRuleRemoveById 340151 340153 1234234 950006 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-content/plugins/sociable/">
SecRuleRemoveById 960010 960012 950006 959006
SecRuleRemoveById phpids-17
SecRuleRemoveById phpids-20
SecRuleRemoveById phpids-21
SecRuleRemoveById phpids-30
SecRuleRemoveById phpids-61
</LocationMatch> 

<LocationMatch "/wp-content/plugins/wp-recaptcha/">
  SecRuleRemoveById 340151 340153 1234234 300015 300016 300017 950907 950005 950006 960008 960011 960904 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-content/plugins/fancybox-for-wordpress/">
  SecRuleRemoveById 960010 960012 950006 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch “/wp-includes/js/tinymce/plugins/spellchecker/rpc.php”>
SecRuleRemoveById 960010
SecRuleRemoveById 960012
SecRuleRemoveById 959006
</LocationMatch>

<LocationMatch "/wp-content/themes/YOUR_THEME/thumb.php">
  SecRuleRemoveById 340151 340153 1234234 300015 300016 300017 950907 950005 950006 960008 960011 960904 959006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

It is definitely a CHMOD/permission issue. You need to tell your host to change the Group ownership to nobody for the folders wp-content/upgrade and wp-content/plugins and then changing the permission to 775. It will work flawlessly then. This usually happens when you have changed a host or if your host have uninstalled suPHP recently.

define(‘WP_MEMORY_LIMIT’, ‘128M’); or
define(‘WP_MEMORY_LIMIT’, ‘256M’); or
define(‘WP_MEMORY_LIMIT’, ‘512M’); provided that you have at least 1024 MB of megabytes of RAM.

You must configure this on your wp-config.php under wp-cache true value or somewhere at the top.

Ah okie dokie Joseph! Sounds good. I too just received a similar error right about now.

Another update:

For the Sociable plugin fix if you are experiencing any errors that is:

<LocationMatch “/wp-content/plugins/sociable/”>
SecRuleRemoveById 960010 960012 950006
SecRuleRemoveById phpids-17
SecRuleRemoveById phpids-20
SecRuleRemoveById phpids-21
SecRuleRemoveById phpids-30
SecRuleRemoveById phpids-61
</LocationMatch>

Thanks for the head up!

I have included the Google Robot Activity exception now and also added a few experimental exceptions to make 2 plugins (Fancybox for WordPress & Wp-Recaptcha) work.

Lastly, still messing around with the TimThumb.php (or thumb.php) script and mod_security conflict issue. Integrated the Hostgator exceptions and a few other general exceptions to that script particularly. Simply change the part that says YOUR_THEME to your active theme’s folder name so that the full address denotes to the timthumb or thumb.php file directly.

<LocationMatch "/">
SecRuleRemoveById 910006
SecRuleRemoveById 960015
</LocationMatch>

<LocationMatch "/wp-admin/post.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/admin-ajax.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/page.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/options.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-admin/theme-editor.php">
  SecRuleRemoveById 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-content/plugins/wp-recaptcha/">
  SecRuleRemoveById 340151 340153 1234234 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-content/plugins/fancybox-for-wordpress/">
  SecRuleRemoveById 960010 960012 950006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-includes/">
  SecRuleRemoveById 960010 960012 950006
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

<LocationMatch "/wp-content/themes/YOUR_THEME/thumb.php">
  SecRuleRemoveById 340151 340153 1234234 300015 300016 300017 950907 950005 950006 960008 960011 960904
  SecRuleRemoveById phpids-17
  SecRuleRemoveById phpids-20
  SecRuleRemoveById phpids-21
  SecRuleRemoveById phpids-30
  SecRuleRemoveById phpids-61
</LocationMatch>

Yep,

Same problem here. At first I thought it was an issue with Mod_Security and Googled it – what I found?

to change the file located here:
/etc/httpd/modsecurity.d/modsecurity_crs_10_config.conf

Ctrl+F: Find the line Below
SecResponseBodyLimit 524288

Replace it with:
SecResponseBodyLimit 524288

Did that and it still didn’t work.

I think this can also be an issue with ConfigServer Firewall and it may just help everyone (including Akismet) if we also include our relevant known server setup that might correspond to this particular problem’s actual cause.

Here goes mine:

WordPress 3.03
Akismet – 2.50
Apache 2.2 (with low timeout)
PHP 5.2.14
Running Mod_Security
Running ConfigServer Firewall with SynFlood Protection.
Sysctl.conf includes Syn_Flood protection – On
Custom HTaccess ruleset which shouldn’t be relevant I think.

Damn thats soooooooooo good news for most of the people, but not me. I am using Hyper Cache and now I am sooooooooooooooooo ugggggggghh!! Matt can you please please please take a look at hyper cache? It works the same way like super cache, only difference is that there is no issues of htaccess fix.

I know most cell phones doesn’t support the java elements, but I thought, something is better than nothing lol.

I will be really really really grateful to you if you can most kindly work it out with Hyper Cache.

I am still trying the new version, hoping that it might work out of the blue lol so go right ahead and Sue me!!! And really looking forward to Mobile Press!!

No problem bro! I really need this particular plugin to work with the cached versions of posts/pages.

I also checked out about how to do it you know, and I saw that popularity contest plugin has been made compatible with super cache though, by default, it does not work simultaneously.

The hack of that plugin was that they used a .JS code in the footer which specifically served for popularity plugin, thus making it act like analytics or bloglog I suppose.

I have no idea about php and stuff you know, but I know what’s the basic elements that is being pulled into, thats why I was able to let you know about the hack lol.

Please Please Please make it work somehow or the other so that I and everyone else can use this plugin with cache.

The plugin is so fantastic, I actually activated it just to see how the theme looks like lol. Very well done!!! Way better than WordPress Mobile and WordPress WAP.

If you need any information regarding how the mobiles (thats what I am good at, understanding and phuuuuckin with mobile tech lol) detect itself or how wap actually behaves then just whistle me in my existing mobile blog or in here and I will contact you immediately.

Waiting for the next version most eagerly as you can see lol. Cheers!

Just checked it, it DOES NOT WORK with Cache plugins……….. :((((

Hiya there denhamcoote, all the other “mobile converter” had this issue with cache plugins running simultaneously. I am not using SuperCache but actually am using Hyper Cache (another similar easier to implement caching plugin) and was wondering if it will work with this one as I desperately need a mobile version of my existing blog. My blog is actually a blog related to mobile phones, so you know!! Lol Please let us know about how to do this with Hyper Cache, it really is important.

Thanks in advance and great plugin of course!!!!!! Will be keeping an eye on your plugin and specially this page.

I have no clue!! I hope this gets resolved very soon.

Damn seeing all you guys, I am afraid to upgrade…

Will the blog work on the front end at least if I do the upgrade and ran into troubles?