Misconfiguration of mod_security will cause your website to not properly function and return fatal errors. This problem can only be solved by disabling mod_security and filtering rules.

Create .htaccess in your website's root directory (var/www). Or you could just add the following lines if you already have an existing .htaccess.

SecFilterEngine Off
SecFilterScanPOST Off

This will disable ModSecurity (mod_security) module running in your site or server.

To uninstall ModSecurity (mod_security), comment out or delete the related mod_security entries from httpd.conf file. This is located in /etc/httpd/conf/ directory. The lines that should be removed include:

AddModule mod_security.c
LoadModule security_module modules/mod_security.so
Include “/usr/local/apache/conf/modsec.conf” (or maybe similar to this line)

Save the file (httpd.conf) and restart Apache (/etc/init.d/httpd restart)


ModSecurity will no longer be loaded by the system.

Recommended buys!

0 comments