Hostgator Tips : Temporarily disable ModSecurity

If you’re hosted on Hostgator or any other host that use Modsecurity to protect their web server, you might notice some problems especially if you try to post something that has forbidden words / string in it (a good example is my previous post about Hostgator SSH Access). It seems the Hostgator modsecurity filter doesn’t allow some words in my previous post, so you’ll get HTTP 406 / Not Acceptable message (if you look at the http status header manually)

So what’s the best solution without compromising your system security ? .. you can add the below lines into .htaccess to disable modsecurity when you try to post something to your blog :

<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>

The above lines means : If modsecurity is found, it’ll disable the filtering function. If modsecurity not found it’ll do no harm to your server

And what’s next ? if you’re able to post to your blog successfully, you can remove the above lines from your .htaccess file or you can simply add # character before each line

Comment?

2 thoughts on “Hostgator Tips : Temporarily disable ModSecurity