i’m getting a 503 response from one of my domains when i request a page that has query arguments:
the error log shows:
[Wed May 12 13:39:41 2010] [error] [client 188.8.131.52] ModSecurity: Access denied with code 503 (phase 2). Pattern match “/(new(cmd|command)|(cmd|command)[0-9]+|pro18|shell|sh|bash|get|root|spy|nmap|asc|lila)\.(c|dat|gif|jpe?g|jpeg|png|sh|txt|bmp|dat|txt|js|htm|html|tmp|php|asp)\?” at REQUEST_URI. [file “/dh/apache2/template/etc/mod_sec2/gotroot/50_asl_rootkits.conf”] [line “39”] [hostname “archinspection.com”] [uri “/lib/get.php”] [unique_id “S@sSDUWjyI8AAHysCZIAAAAC”]
i have no .htaccess files set up. fairly new to dreamhost so i’m not familiar with everything yet. looks like maybe this is some server level security thing. are we not allowed to use query args? the phpinfo dump shows that php is configured to accept them…
if anyone’s got any info on what might be going on i’d appreciate it!