Apache:400 Bad request
Error message in Browser- Bad Request Your browser sent a request that this server could not understand. Apache/2.2.0 (Fedora) Server at 10.129.150.205 Port 80 Entry in Apache Error Log- [Wed Dec 17 13:15:23 2008] [error] [client 10.129.150.205] ModSecurity: Access denied with code 400 (phase 2). Pattern match "^[\\\\d\\\\.]+$" at REQUEST_HEADERS:Host. [id "960017"] [msg "Host header is a numeric IP address"] [severity "CRITICAL"] [hostname "10.129.150.205"] [uri "/"] [unique_id "Qi9cCgqBls0AACJ-VCgAAAAF"] Solution- Check "/etc/httpd/modsecurity.d" directory and modify file "modsecurity_crs_21_protocol_anomalies.conf " modsecurity_crs_21_protocol_anomalies.conf ---------------------------------------------------------------- # # Check that the host header is not an IP address # SecRule REQUEST_HEADERS:Host "^[\d\.]+$" "deny,log,auditlog,status:400,msg:'Host header is a numeric ...