[simonw]

Hi Michael,

Thanks for getting back to me on a weekend.

I reported the issue to my hosting company who solved it quickly. For your information they said it was –

“your get request is tripping out some of the mod_security rules for remote file inclusion”.

When I asked for more details to report back here they sent me this –

“The ruleset is the same [across the two servers] however because you’re calling by different name, domain, and get-string values some sites may match and some not; we recommend that data be passed via POST for cleaner operation, generally.”

Thanks for your help again.

Simon

PS I can highly recommend my hosting company for their excellent support – http://www.5quidhosting.co.uk

[simonw]

Hi Michael,

Many thanks for the prompt response.

What am I looking for in the .htaccess? Here it is:

Options +FollowSymLinks

RewriteEngine On

RewriteCond %{QUERY_STRING} base64_encode[^(]*([^)]*) [OR]

RewriteCond %{QUERY_STRING} (<|%3C)([^s]*s)+cript.*(>|%3E) [NC,OR]

RewriteCond %{QUERY_STRING} GLOBALS(=|[|%[0-9A-Z]{0,2}) [OR]

RewriteCond %{QUERY_STRING} _REQUEST(=|[|%[0-9A-Z]{0,2})

RewriteRule .* index.php [F]

RewriteRule .* – [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]

RewriteCond %{REQUEST_URI} !^/index.php

RewriteCond %{REQUEST_URI} /component/|(/[^.]*|.(php|html?|feed|pdf|vcf|raw))$ [NC]

RewriteCond %{REQUEST_FILENAME} !-f

RewriteCond %{REQUEST_FILENAME} !-d

RewriteRule .* index.php [L]

I missed the option to turn on your built-in user permissions. Have you got a FAQ/Doc on that on your site?

Your plugin is brilliantly simple – thanks!

Regards,

Simon

[simonw]

Hi brnkrc,

I think I am doing what you want. Check the latest post in the this forum from me (dated today) – I describe how I do it.

Regards,

Simon

[Author]

Posts