406 not acceptable error on install...

« 
Previous topic
|
Install & configuration
|
Next topic
 »
Author Message

wayne street

Monday 19 February 2007 10:09:50 am

I am installing on a sub-domain...

I uploaded all files to my host.

I then run the install wizard.
It came back with directories that I needed to chmod, so I did that.

It then progressed to outgoing email setup. I choose 'Sendmail/MTA' and hit next.

I then get:
406 not acceptable
An appropriate representation of the requested resource /index.php could not be found on this server.

I check and thee ez publish index.php file is in the subdomain root directory.

Any suggestions.

Claudia Kosny

Monday 19 February 2007 11:47:21 am

Hi Wayne

If you google around a bit you can find quite a few pages stating mod_security as the reason for this problem. The recommended solution is to add the following to your .htaccess:

<IfModule mod_security.c>
 SecFilterEngine Off
 SecFilterScanPOST Off
</IfModule>

Please note that I don't know whether doing this is a good idea as I don't have the slightest clue what mod_security is actually doing. On the other hand this htaccess addition was recommended for drupal, joomla, wordpress ... so if you want to use a cms it seems that you have to live with it.

Claudia

wayne street

Tuesday 20 February 2007 9:06:40 am

Thanks. That worked and got me a little further along.

Three Quarks

Wednesday 09 May 2007 1:45:15 am

check your error log for apache mine was error_log

you should see a mod_security error message

mine was
[Wed May 09 02:30:33 2007] [error] [client 210.209.74.203] mod_security: Access denied with code 406. Pattern match "!(/imp/login\\\\.php)" at HEADER("Referer") [id "300018"] [rev "3"] [msg "Generic PHP code injection protection via ARGS"] [severity "CRITICAL"] [hostname "www.somedomain.com"] [uri "/index.php?option=login"] [unique_id "gnZhgH8AAAEAAEa8QMAAAAAA"]

grepped 300018 in /etc/httpd/conf.d/ the id for the error message

found mod_sec-rules.conf had a matching rule

the rule was "really broad furl_fopen attack sig"

There are two version of this same rule.

Commented out the 1st version.

restarted httpd / apache.

error message no longer appeared.

Three Quarks

Wednesday 09 May 2007 2:52:45 am

quick update.

i rewrote the rule as follows:-

SecFilterSelective REQUEST_URI "!(/tiki-objectpermissions|aardvarkts/install/index|/do_command|banner_click|wp-login|tiki-view_cache|/horde/index|/horde/services/go|/goto|gallery2?/main|ad-?server/adjs)" "chain,id:300018,rev:3,severity:2,msg:'Generic PHP code injection protection via ARGS'"
SecFilterSelective REQUEST_URI "\.php(3|4|5)?(\?http|&http|\?ftp|&ftp)" chain
SecFilterSelective HTTP_Referer "!(/imp/login\.php)"

the original ARGS option was being ignored!
Powered by eZ Publish™ CMS Open Source Web Content Management. Copyright © 1999-2014 eZ Systems AS (except where otherwise noted). All rights reserved.

eZ debug

Timing: Jan 31 2025 01:32:53
Script start
Timing: Jan 31 2025 01:32:53
Module start 'layout'
Timing: Jan 31 2025 01:32:53
Module start 'content'
Timing: Jan 31 2025 01:32:53
Module end 'content'
Timing: Jan 31 2025 01:32:53
Script end

Main resources:

Total runtime0.0235 sec
Peak memory usage6,144.0000 KB
Database Queries3

Timing points:

CheckpointStart (sec)Duration (sec)Memory at start (KB)Memory used (KB)
Script start 0.00000.0049 588.2578151.2266
Module start 'layout' 0.00490.0044 739.4844220.7188
Module start 'content' 0.00930.0126 960.20311,001.8516
Module end 'content' 0.02190.0016 1,962.054733.9922
Script end 0.0235  1,996.0469 

Time accumulators:

 Accumulator Duration (sec) Duration (%) Count Average (sec)
Ini load
Load cache0.002812.0187140.0002
Check MTime0.00114.7282140.0001
Mysql Total
Database connection0.00062.669710.0006
Mysqli_queries0.002811.899130.0009
Looping result0.00000.059810.0000
Template Total0.00114.710.0011
Template load0.00093.826210.0009
Template processing0.00020.884810.0002
Override
Cache load0.00062.596710.0006
General
dbfile0.00031.090680.0000
String conversion0.00000.034540.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

UsageRequested templateTemplateTemplate loadedEditOverride
1print_pagelayout.tpl<No override>extension/community/design/community/templates/print_pagelayout.tplEdit templateOverride template
 Number of times templates used: 1
 Number of unique templates used: 1

Time used to render debug report: 0.0001 secs