Welcome to the Question2Answer Q&A. There's also a demo if you just want to try it out.
+1 vote
554 views
in Q2A Core by
edited by

Yesterday I came with a problem. I was not able to post some code and I was getting an error.

"Unexpected response from server - please try again or switch off Javascript.”

After digging and digging into the problem and mod_security rules I tweaked them to let my site accept that. Of course  leaving my site open to attacks, have daily backups and restore everything in case I got hacked, its not a good solution.

I see its a very common complaint here and its something that really needs to be fixed.

Anyone that knows about this and can share something deeper ?

 

Thanks.

by
How have you modified the mod_security rules ? Which of the rules was blocking you ?  Accessing which of the Q2A pages ?
by
If the developers want, they can install Atomic mod_security rules and test it themselves. The problem is the code posted and not the application. There may be a way to rewrite the way the app allows code to be posted in a way that will not trigger a block.

- Which of the rules was blocking you ?
Rule #340157 in 10_asl_rules.conf.
Rule #360148 in 11_asl_adv_rules.conf.

- Accessing which of the Q2A pages ?
Any page. I tried to post code and get the error. I don't get it with all the code, but some of them trigger the problem.
by
Thanks for details. Just another question : what do you mean when you say : "the problem is the *code* posted and not the application" ?
by
Select a bunch of code, paste it as an answer and boom.

So if you discuss code as a developer is not a good thing to happen in your site. Just like here, imagine that when sharing snippets, code and so on, the security thing starts... As I said is not with all the code in the word, but yes with some that have to do with security.

Thats the problem.

Please log in or register to answer this question.

...