mod_security experts please

what do i need to change from the ruleset below to allow my customers to publish using frontpage. would be nice if the server could maintain the security and frontpage users could publish. thank you very much


<IfModule mod_security.c>
SecFilterEngine On
SecServerSignature " "
SecFilterCheckURLEncoding On
SecFilterCheckUnicodeEncoding Off
SecFilterForceByteRange 1 255
SecAuditEngine RelevantOnly
SecAuditLog /var/log/audit_log
SecFilterScanPOST On
SecFilterDefaultAction "deny,log,status:500"
SecFilterSelective ARG_PHPSESSID "!^[0-9a-z]*$"
SecFilterSelective COOKIE_PHPSESSID "!^[0-9a-z]*$"
SecFilter "wget\x20"
SecFilter "uname\x20-a"
SecFilterSelective THE_REQUEST "/bin/ls"
SecFilterSelective THE_REQUEST "/usr/bin/id"
SecFilter "conf/httpd\.conf"
SecFilterSelective THE_REQUEST "///"
SecFilter "cd[[mod_security experts pleasepace:]]/tmp"
SecFilter "cd[[mod_security experts pleasepace:]]/var/tmp"
SecFilter "cd[[mod_security experts pleasepace:]]/dev/shm"
SecFilter "\.\.\\"
SecFilter "/\.\.\.\."
SecFilterSelective THE_REQUEST "///cgi-bin"
SecFilterSelective THE_REQUEST "/cgi-bin///"
SecFilter "gcc\x20-o"
SecFilter "cc\x20"
SecFilter "cpp\x20"
SecFilterSelective THE_REQUEST "system\("
SecFilterSelective THE_REQUEST "exec\("
SecFilterSelective THE_REQUEST "popen\("
SecFilterSelective THE_REQUEST "passthru\("
SecFilter "viewtopic\.php\?" chain
SecFilter "chr\(([0-9]{1,3})\)" "deny,log"
</IfModule>

 

 

 

 

Top