403 Error on Plugin Upload
- Thread starter tathspts
- Start date
this is the snapshot https://prnt.sc/pqnj6b
It is default wordpress. not migrated.
I only modified this value https://prnt.sc/pqnkfy
set it to 100 from 16.
It is default wordpress. not migrated.
I only modified this value https://prnt.sc/pqnkfy
set it to 100 from 16.
only this different here from your defaulr wordpress setup is, I added new vhost using these commands. Everything works fine except I can't upload plugins to wordpress.
wget https://raw.githubusercontent.com/litespeedtech/ls-cloud-image/master/Setup/vhsetup.sh
chmod +x vhsetup.sh
bash vhsetup.sh
I have tested and I am able to upload media files just fine. In that too I noticed it says maximum allowed size is 16MB. Shouldn't it say 100MB? Since I modified it in php.ini now? https://prnt.sc/pqnolc
wget https://raw.githubusercontent.com/litespeedtech/ls-cloud-image/master/Setup/vhsetup.sh
chmod +x vhsetup.sh
bash vhsetup.sh
I have tested and I am able to upload media files just fine. In that too I noticed it says maximum allowed size is 16MB. Shouldn't it say 100MB? Since I modified it in php.ini now? https://prnt.sc/pqnolc
Check here https://docs.litespeedtech.com/cloud/wordpress/#how-do-i-change-php-parameters
You may want to increase both `upload_max_filesize` and `post_max_size`. And then restart web server `service lsws restart`, see if it helps.
Best
You may want to increase both `upload_max_filesize` and `post_max_size`. And then restart web server `service lsws restart`, see if it helps.
Best
Hi,
I just launched a new server and run vhsetup script and finish the wordpress installation. Login to the wp-admin and then tried uploading plugins without any permission issue. www-data user/group should correct. Maybe you can send the issue to support@litespeedtech.com with reproduce method.
Best
I just launched a new server and run vhsetup script and finish the wordpress installation. Login to the wp-admin and then tried uploading plugins without any permission issue. www-data user/group should correct. Maybe you can send the issue to support@litespeedtech.com with reproduce method.
Best
turns out the problem is the mod security configuration. Below is my mod security conf. If I remove the line "SecRequestBodyAccess On" it works fine as far as plugin upload is concerned. But if I remove this line mod security module itself does not work. Not sure if you can help?
modsecurity on
modsecurity_rules `
SecRuleEngine On
SecRequestBodyAccess On
SecDataDir "/var/log/secdatadir"
`
SecRule REQUEST_URI ""
modsecurity_rules_file /usr/local/lsws/modsec/owasp/crs30/owasp-master.conf
modsecurity_rules_file /usr/local/lsws/modsec/comodo/rules.conf
modsecurity on
modsecurity_rules `
SecRuleEngine On
SecRequestBodyAccess On
SecDataDir "/var/log/secdatadir"
`
SecRule REQUEST_URI ""
modsecurity_rules_file /usr/local/lsws/modsec/owasp/crs30/owasp-master.conf
modsecurity_rules_file /usr/local/lsws/modsec/comodo/rules.conf
Hi,
Similar case here, you need to test and update mod security rules to your need.
https://forum.vestacp.com/viewtopic.php?t=14668
Best,
Eric
Similar case here, you need to test and update mod security rules to your need.
https://forum.vestacp.com/viewtopic.php?t=14668
Best,
Eric