403 Errors, mod_security
-
Hi there!
I’ve started getting 403 errors on my sites today, and I’ve narrowed it down to an issue with Jetpack.
Also, the errors only appear when I am logged in – the sites work fine for unauthenticated users.
Here’s what I found in my server error logs:
[Wed Sep 07 20:14:47.073682 2022] [:error] [pid 25529:tid 139752690919168] [client ********] [client ********] ModSecurity: Access denied with code 403 (phase 4). Match of "rx \\\\ssrc=\\\\x22https:\\\\/\\\\/www\\\\.googletagmanager\\\\.com\\\\/ns\\\\.html\\\\?id=GTM|\\\\ssrc=\\\\x22https:\\\\/\\\\/w\\\\.soundcloud\\\\.com\\\\/player\\\\/\\\\?url=" against "TX:0" required. [file "/etc/apache2/modsecurity.d/rules/comodo_free/19_Outgoing_FilterInFrame.conf"] [line "14"] [id "214540"] [rev "5"] [msg "COMODO WAF: Possibly malicious iframe tag in output||fullofwords.com|F|3"] [data "Matched Data: <iframe src=\\x22https://widgets.wp.com/3rd-party-cookie-check/index.html\\x22 style=\\x22display:none found within TX:0: <iframe src=\\x22https://widgets.wp.com/3rd-party-cookie-check/index.html\\x22 style=\\x22display:none"] [severity "ERROR"] [tag "CWAF"] [tag "FilterInFrame"] [hostname "fullofwords.com"] [uri "/index.php"] [unique_id "Yxj7tlI-CVeSPfrqHhMjkQAAAMc"], referer: https://fullofwords.com/wp-admin/`Let me know if you need anything else to troubleshoot this issue!
The page I need help with: [log in to see the link]
-
Thanks to the suggestion to deactivate Jetpack Notifications in one of the other threads about this issue, I was able to resolve the problem as follows:
1. Rename the Jetpack plugin folder from FTP to deactivate the plugin.
2. Access the WordPress admin Dashboard.
3. Change the Jetpack plugin folder back to the original name in FTP.
3. Reactivate the Jetpack plugin.
4. Go directly to the Jetpack modules page at wp-admin/admin.php?page=jetpack_modules and deactivate the Notifications module.After taking those steps, my site loads as normal.
The topic ‘403 Errors, mod_security’ is closed to new replies.
