Sintomas

Um site de instância do Wordpress hospedado no Plesk não consegue carregar com:

403 forbidden

Registros de log semelhantes aos exemplos abaixo podem ser encontrados em: /var/www/vhosts/example.com/logs/errors_log

ModSecurity: Access denied with code 403 (phase 4). Match of "rx \\\\ssrc=\\\\x22https:\\\\/\\\\/www\\\\.googletagmanager\\\\.com\\\\/ns\\\\.html\\\\?id=GTM|\\\\ssrc=\\\\x22https:\\\\/\\\\/w\\\\.soundcloud\\\\.com\\\\/player\\\\/\\\\?url=" against "TX:0" required. [file "/etc/apache2/modsecurity.d/rules/comodo_free/19_Outgoing_FilterInFrame.conf"] [line "14"] [id "214540"] [rev "5"] [msg "COMODO WAF: Possibly malicious iframe tag in output||example.com|F|3"] [data "Matched Data: <iframe src=\\x22https://widgets.wp.com/3rd-party-cookie-check/index.html\\x22 style=\\x22display:none found within TX:0: <iframe src=\\x22https://widgets.wp.com/3rd-party-cookie-check/index.html\\x22 style=\\x22display:none"] [severity "ERROR"] [tag "CWAF"] [tag "FilterInFrame"] [hostname "example.com"] [uri "/index.php"] [unique_id "Yxhf3IEsQWESe-rBcToL6AAAAEo"]

 

ModSecurity: Warning. Operator GE matched 4 at TX:outgoing_points. [file "/etc/apache2/modsecurity.d/rules/comodo_free/20_Outgoing_FiltersEnd.conf"] [line "38"] [id "214940"] [rev "2"] [msg "COMODO WAF: Outbound Points Exceeded| Total Points: 4|example.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "FiltersEnd"] [hostname "example.com"] [uri "/error_docs/forbidden.html"] [unique_id "Yxhf3IEsQWESe-rBcToL6AAAAEo"]

 

Resolução

Desative as regras de segurança encontradas nos logs por seu(s) ID(s) com estas instruções.

Note: Por exemplo, nos logs de domínio acima, os erros contêm mais de um ID de regra como: [id "214540"] e [id "214940"]. Nesse caso, "214540" e "214940" devem ser desativados.