mod_security not working well with mambo...

Hello,

I'm using mambo on a client's site and mod_security does not like one of the pages I am setting as "typed content" in mambo. It has something to do wilth the html code since if I remove one half it works but the other half returns a server 500 error. It's not my code but my client's. It looks like I will have to clean it up to use but I want to know if there is something mis-configured in mod_security. Here is the error code. I made the error message indigo.
[CODE
Request: 216.160.234.159 - - [18/Nov/2004:16:05:42 -0700] "POST /administrator/index2. php HTTP/1.1" 500 0
Handler: server-parsed
Error: File does not exist: /home/lucybe/public_html/ 500. shtml
----------------------------------------
POST /administrator/index2.php HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-excel, application/msword, application/vnd.ms-powerpoint, */*
Accept-Encoding: gzip, deflate
Accept-Language: en-us
Cache-Control: no-cache
Connection: Keep-Alive
Content-Length: 4683
Content-Type: application/x-www-form-urlencoded
Cookie: mosadmin=04796c45454634a56ad136bad79175d3; sessioncookie=5c4a3a0c8a01e5d64a8534a04ca1c505
Host: XXX
Referer: XXX
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)
mod_security-message: Access denied with code 500. Pattern match "rm\x20" at POST_PAYLOAD.
mod_security-action: 500

HTML CONTENT HERE. REMOVED TO SHORTEN...

HTTP/1.1
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=iso-8859-1

[/CODE]

Thanks for the help...

 

 

 

 

Top