The users on my forum have been telling me that they couldn't use the private message system, it was generating errors. I looked tonight, and that is indeed the case, it generates a 403 Forbidden error - but ONLY when you go hit reply. The URL left on my browser when this happens is:
http://www.black-sabbath.com/vb/priv...insertpm&pmid=
I googled around, and most people think this is about mod security. They tell you to put this in an .htaccess file:
Well, that file is already there. Additionally a phpinfo file shows that I'm not running mod security - although if that code is in place from .htaccess that might explain it.
I'm not entirely sure where to go here. I haven't changed my forum's code in freakin' ages. It is pretty much the same thing I've had for quite awhile now. Theme hasn't changed in over two years or so. So I didn't change anything on my end forum code wise. There were some server patches recently relative to various exploits, but that is always ongoing as any server person knows.
I also run the same code on a separate domain on the same server (with another license!). That version doesn't have any problem with PM's.
So I'm not sure how to attack this. Tkx.
http://www.black-sabbath.com/vb/priv...insertpm&pmid=
I googled around, and most people think this is about mod security. They tell you to put this in an .htaccess file:
Code:
<IfModule mod_security.c> SecFilterEngine Off SecFilterScanPOST Off </IfModule>
I'm not entirely sure where to go here. I haven't changed my forum's code in freakin' ages. It is pretty much the same thing I've had for quite awhile now. Theme hasn't changed in over two years or so. So I didn't change anything on my end forum code wise. There were some server patches recently relative to various exploits, but that is always ongoing as any server person knows.
I also run the same code on a separate domain on the same server (with another license!). That version doesn't have any problem with PM's.
So I'm not sure how to attack this. Tkx.
Comment