Control Web Panel

Security => Mod_Security => Topic started by: adrianocso on September 06, 2019, 03:28:30 PM

Title: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: adrianocso on September 06, 2019, 03:28:30 PM

I'm having Mod Security issues when trying to save a wordpress translation with the Loco Translate plugin, the following message appears:

- Error: 403 Forbidden. Check console output for debugging information.

I did a test and deactivated Mod Security for the domain the problem was solved, but I want to leave a rule to release the plugin work.

Can someone help me.

Thank you

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: tokar86a on September 08, 2019, 03:05:03 PM

Have you check error logs? That should give you the rule id.

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: asrof_id on October 25, 2019, 10:08:13 AM

I have the same issue.
Loco Translate is blocked my Mod Security.
Anyone know how to fix this?

Thank you.

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: asrof_id on December 28, 2019, 08:08:21 AM

How to check which rule is on this case?

Quote from: tokar86a on September 08, 2019, 03:05:03 PM

Have you check error logs? That should give you the rule id.

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: Igor S. on December 29, 2019, 07:54:47 AM

Hi, you can use CWPadmin => Security => Mod Security, and then you can check the log for the rule ID

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: asrof_id on December 31, 2019, 08:24:59 AM

Hello,

Thanks for reply.

I can not see the rule, which rule is corresponding to the Loco Translate's Error.
I have tried to seek date and time, there is no clue.

Quote from: Igor S. on December 29, 2019, 07:54:47 AM

Hi, you can use CWPadmin => Security => Mod Security, and then you can check the log for the rule ID

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: asrof_id on January 10, 2020, 09:59:17 AM

it looks there is no associated error on Mod security.
But I found this on Log Viewer

2020/01/10 12:36:23 [crit] 1223#0: *12033 open() "/var/lib/nginx/tmp/client_body/0000000003" failed (13: Permission denied), client: xxx.xxx.xxx.xxx, server: domain.tld, request: "POST /wp-admin/admin-ajax.php HTTP/1.1", host: "domain.tld", referrer: "https://domain.tld/wp-admin/admin.php?path=plugins%2Fwoocommerce%2Fi18n%2Flanguages%2Fwoocommerce-id_ID.po&bundle=woocommerce%2Fwoocommerce.php&domain=woocommerce&page=loco-plugin&action=file-edit"

Anyone know with this message?

Quote from: Igor S. on December 29, 2019, 07:54:47 AM

Hi, you can use CWPadmin => Security => Mod Security, and then you can check the log for the rule ID

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: Igor S. on January 23, 2020, 08:35:19 AM

Check the owner and permissions for /var/lib/nginx/ and /var/lib/nginx/tmp and change them. Or update the system software (this bug with nginx cache was long time ago)

Title: Re: Wordpress - Error: 403 Forbidden. Check console output for debugging information
Post by: asrof_id on January 24, 2020, 12:42:28 AM

Hello Igor,

Thank you very much for continued reply. You help us much.

Changing file permission on that is the solution, thank you, now is fixed. But could you give us best file permission? The default is 770, I changed to 775, is that true? or you have the better one?
Updating system software not fix this case, I have tried this.

Thank you vey much Igor, I was very helped. Best luck for you.

Quote from: Igor S. on January 23, 2020, 08:35:19 AM

Check the owner and permissions for /var/lib/nginx/ and /var/lib/nginx/tmp and change them. Or update the system software (this bug with nginx cache was long time ago)