PHP.URI.Code.Injection Firewall Message

PHP.URI.Code.Injection Firewall Message

by Ali Arekat -
Number of replies: 1

Dears,

I would appreciate it if you help me in the following issue.

Our server administrator has activated the FORTINET firewall on our Moodle server. After that we faced different issues on our Moodle system, the firewall blocked some of the Moodle features like using text editors and uploading files. To solve that the administrator used a lower level of security.

Now, I am still facing the following error when I try to Change the Grouping mode in a course, the following PHP Code Injection error appear http://fortiguard.com/encyclopedia/ips/15463 in-spite that the administrator is using now the lowest level of security on the firewall.

Could you please inform me if there is any specifications that we should use on the Moodle server in order to activate a firewall on it.

Best Regards,


Average of ratings: -
In reply to Ali Arekat

Re: PHP.URI.Code.Injection Firewall Message

by Tomasz Muras -
Picture of Core developers Picture of Plugin developers Picture of Plugins guardians Picture of Translators

Hi Ali,

To help you with that I'd need to see exactly what request is triggering what kind of rule in fortiguard. Please provide an evidence from your server administrator (e.g. full copy of the HTTP request, response and technical details of http://fortiguard.com/encyclopedia/ips/15463) of the potential vulnerability.

Tomek

Average of ratings: -