From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: To: ALT Linux Sisyphus discussion list Organization: Tyumen's University, Institute of Distance Education References: <200602161125.20180.ashen@nsrz.ru> <200602201813.20653.ashen@nsrz.ru> <20060221073255.GA8053@basalt.office.altlinux.org> <200603161205.29022.ashen@nsrz.ru> From: "Vladimir V. Kamarzin" Date: Thu, 16 Mar 2006 14:35:06 +0500 In-Reply-To: <200603161205.29022.ashen@nsrz.ru> (ashen@nsrz.ru's message of "Thu, 16 Mar 2006 12:05:28 +0300") Message-ID: User-Agent: Gnus/5.1007 (Gnus v5.10.7) XEmacs/21.4.19 (linux) MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit X-Virus-Scanned: ClamAV using ClamSMTP Subject: Re: [sisyphus] alterator-browser-http X-BeenThere: sisyphus@lists.altlinux.org X-Mailman-Version: 2.1.6 Precedence: list Reply-To: ALT Linux Sisyphus discussion list List-Id: ALT Linux Sisyphus discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Mar 2006 09:35:38 -0000 Archived-At: List-Archive: List-Post: >>>>> On 16 Mar 2006 at 14:05 "a" == ashen writes: a> Он мне такое на выдавал, что я ни чего не понял ... ;) a> Но вот в логах апача появилось следующее: a> Thu Mar 16 11:48:03 2006] [error] [client 127.0.0.1] mod_security: Access a> denied with code 403. Pattern match "!(^$| a> ^application/x-www-form-urlencoded$|^multipart/form-data)" at a> HEADER("Content-Type") [hostname "localhost"] [uri a> "/fcgi-bin/alterator-cgi.scm"] a> [Thu Mar 16 11:48:10 2006] [error] [client 127.0.0.1] mod_security: Access a> denied with code 403. Pattern match "!(^$| a> ^application/x-www-form-urlencoded$|^multipart/form-data)" at a> HEADER("Content-Type") [hostname "localhost"] [uri a> "/fcgi-bin/alterator-cgi.scm"] a> [Thu Mar 16 11:49:00 2006] [error] [client 217.170.91.126] File does not a> exist: /var/www/html/favicon.ico a> По чему может быть отказано в доступе? Потому что стоит mod_security, а там в дефолтных рулях есть такое: # Only accept request encodings we know how to handle # we exclude GET requests from this because some (automated) # clients supply "text/html" as Content-Type SecFilterSelective REQUEST_METHOD "!^GET$" chain SecFilterSelective HTTP_Content-Type "!(^$|^application/x-www-form-urlencoded$|^multipart/form-data)" -- vvk