[wp-testers] .htaccess tweak re mod_security and image upload using Windows Firefox

Mistah P mistahp.testers at gmail.com
Tue Mar 25 17:16:54 GMT 2008


On Tue, Mar 25, 2008 at 12:03 PM, Philip Barron <delcyphr at gmail.com> wrote:
>  I searched and found an .htaccess workaround to coax mod_security to
>  look the other way and ignore the Flash header problem, without disabling
>  mod_security overall:
>  http://forum.joomla.org/viewtopic.php?f=428&t=267886&st=0&sk=t&sd=a&sid=df1beece3831ff92e138f5ead8852af3&start=30#p1229033
>
>  I added this to .htaccess:
>
>  <IfModule mod_security.c>
>  SetEnvIfNoCase Content-Type \
>  "^multipart/form-data;" "MODSEC_NOPOSTBUFFERING=Do not buffer file uploads"
>  </IfModule>
>
>  <IfModule mod_gzip.c>
>  mod_gzip_on No
>  </IfModule>
>
>  Result: Image uploaded successfully using Firefox/Windows with no errors and
>  without disabling mod_security.
>

I found this fix sometime last week while looking for solutions to
this. I didn't forward it on to everyone else because it unfortunately
doesn't fix anything for me. The uploader still gets the same 406
error.

When I disable mod_security, it still fails, this time with 403
errors. I'm assuming there's something non-standard about my shared
host that's causing these failures. I'm hoping that when 2.5 goes
final, my host's server guys will be able to give me some answers
about the problem. I'd ask them now, but I suspect they won't give me
the time of day when I tell them I'm using a pre-release version of
WP.


More information about the wp-testers mailing list