WordPress.org

1. tomgf
   Member
   Posted 4 years ago #
   

   I am seeing this on my error_log:

   [Tue Dec 16 02:47:55 2008] [error] [client nn.nn.nn.nn] mod_security: Access denied with code 500. Pattern match "^$" at HEADER [hostname "www.hostname.com"] [uri "/wp-cron.php?check=623219d0598131d782fa6c88192ca86c"]

   Meaning that mod_security is bouncing these requests because the HEADER is empty. I can change mod_security by allowing self requests or not checking wp-cron.php requests but… is there any other way?

2. tomgf
   Member
   Posted 4 years ago #
   

   So far, my solution was to add this to every host running WP (either in Apache conf files - a recommende method - or in .htaccess):
   

   <Files ~ "wp-cron\.php$">
   <IfModule mod_security.c>
     SecFilterEngine Off
   </IfModule>
   Order Deny,Allow
   Deny from All
   Allow from my.own.IP.address
   </Files>

Topic Closed

This topic has been closed to new replies.