| Author |
|
manuel
Newbie
Joined: 17 December 2020
Online Status: Offline
Posts: 2
|
| Posted: 17 December 2020 at 8:04am | IP Logged
|
|
|
Hello,
I can receive and read mails. Everything works fine, but I can't save or send mails. In the WebMail log there is nothing but in the log files of my hoster I found these lines:
[client xx.xx.xx.xx] ModSecurity: [file "/etc/httpd/conf/modsecurity.d/rules/tortix/modsec/12_asl_adv_xss_rules.conf"] [line "37"] [id "341256"] [rev "18"] [msg "Atomicorp.com WAF Rules: Possible Cross Site Scripting attack (detectXSS)"] [data "842,ARGS:Parameters"] [severity "CRITICAL"] Access denied with code 403 (phase 2). detected XSS using libinjection. [hostname "xx"] [uri "/"] [unique_id "xxx"], referer: xx
Is this a know problem or is there anything I can do to solve this issue?
Thanks in advance
Manuel
|
| Back to Top |
|
| |
Igor
AfterLogic Support
Joined: 24 June 2008
Location: United States
Online Status: Offline
Posts: 6104
|
| Posted: 17 December 2020 at 10:39pm | IP Logged
|
|
|
We have never encountered anything like that. And from the log record, it's not clear which aspect of WebMail functionality triggers the error. We recommend checking ModSecurity support resources to determine that.
--
Regards,
Igor, Afterlogic Support
|
| Back to Top |
|
| |
manuel
Newbie
Joined: 17 December 2020
Online Status: Offline
Posts: 2
|
| Posted: 19 December 2020 at 10:44am | IP Logged
|
|
|
After your reply I checked if there is something I can do regarding ModSecurity. I figured out that I can disable some rules, so I disabled the XSS rule. I don't know if that is a good or risky thing but it works now.
Thanks for your help.
|
| Back to Top |
|
| |
MailBee.NET Objects 
MailBee.NET Queue 
MailBee Objects 
WebMail Pro PHP 
AfterLogic Aurora 
MailSuite Pro for Linux 
Unified Messaging Solution 
Search
Register
Login
Topic: Can’t send mails - detected XSS
Privacy policy |
Refund policy