Comments on: ModSecurity, WordPress Admin and “Method Not Implemented”

By: Bennett

Bennett — Sun, 17 Feb 2008 03:04:47 +0000

I talked about this issue in WordPress vs. mod_security on my blog a while ago. I don’t think my host allows any way of overriding the mod_security rules (being security rules and all) so I ended up just having to use a workaround. Thanks for the pointer to the various links — I might try the “SecFilterInheritance Off” fix if I get the time.

By: Ted Clayton

Ted Clayton — Tue, 12 Feb 2008 13:31:29 +0000

Ah - these are the refs you started with/hoped would solve your issue; which describe the ’simple’ case and provide the least-invasive, most-general solution-approach: .htaccess edits, which most hosts allow. Good to know - thanks!

By: Mark Ghosh

Mark Ghosh — Tue, 12 Feb 2008 12:55:36 +0000

In that case, something like this should/might work. Dont forget to change the name of the file that is causing the error to come up.

By: Ted Clayton

Ted Clayton — Tue, 12 Feb 2008 12:53:19 +0000

For people using typical remote-hosting arrangements, will this general approach be impractical, for lack of information, and access? (Mr. Cheney recently affirmed that if my hosting-provider does actually exist, it can be legally denied under Geneva Convention.)

If that is so, is there an alternative approach in view, using only client-side facilities?

By: Mark Ghosh

Mark Ghosh — Tue, 12 Feb 2008 12:24:02 +0000

No, I was not using WP-Cache.

By: Alenônimo

Alenônimo — Tue, 12 Feb 2008 12:21:00 +0000

Are you using WP Cache? My host have ModSecurity and I can’t use that plugin or my site crash pretty bad.