kerozenn Posted August 21 Share Posted August 21 Bonjour, je suis sur prestashop 1.7.8 et ayant des problèmes avec mon module de paiement j'ai mis la boutique en maintenance. Impossible de pouvoir ajouter mon adresse ip pour travailler sur ma boutique. A chaque fois que je valide la demande, une page blanche apparait. Même en mode débug je n'ai pas plus d'infos. Si j'essaye d'enlever la maintenance c'est la même chose. Je peux passer une commande sur la BO ou changer d'autres paramètres sans que cela ne pose problème cependant. J'ai vidé les caches via ftp mais sans changement. Auriez-vous d'autres pistes? Merci d'avance! Rozenn Link to comment Share on other sites More sharing options...
Prestashop Addict Posted August 21 Share Posted August 21 Bonjour, avez-vous accès aux log error apache ? SI oui regardez s'il y a une erreur dedans Link to comment Share on other sites More sharing options...
kerozenn Posted August 21 Author Share Posted August 21 en effet il y a un truc qui coince dans les logs... [Wed Aug 21 10:23:34 2024] [error] [client 13.74.117.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960009"] [rev "2.1.1"] [msg "Request Missing a User Agent Header"] [severity "NOTICE"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "kerozenn.fr"] [uri "/alfanew.php"] [unique_id "ZsWkBj-4iwO@3PYFL1gLsQAAAXE"] [Wed Aug 21 10:23:34 2024] [error] [client 13.74.117.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960009"] [rev "2.1.1"] [msg "Request Missing a User Agent Header"] [severity "NOTICE"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "kerozenn.fr"] [uri "/fw.php"] [unique_id "ZsWkBj-4iwO@3PYFL1gLsgAAASQ"] [Wed Aug 21 10:23:34 2024] [error] [client 13.74.117.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960009"] [rev "2.1.1"] [msg "Request Missing a User Agent Header"] [severity "NOTICE"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "kerozenn.fr"] [uri "/install.php"] [unique_id "ZsWkBj-4iwO@3PYFL1gLswAAAQs"] [Wed Aug 21 10:23:34 2024] [error] [client 13.74.117.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960009"] [rev "2.1.1"] [msg "Request Missing a User Agent Header"] [severity "NOTICE"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "kerozenn.fr"] [uri "/wp-login.php"] [unique_id "ZsWkBj-4iwO@3PYFL1gLtAAAASI"] [Wed Aug 21 10:23:34 2024] [error] [client 13.74.117.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960009"] [rev "2.1.1"] [msg "Request Missing a User Agent Header"] [severity "NOTICE"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "kerozenn.fr"] [uri "/wp-contentpluginsgoogle-seo-rankmodule.php"] [unique_id "ZsWkBj-4iwO@3PYFL1gLtQAAAVw"] [Wed Aug 21 10:23:34 2024] [error] [client 13.74.117.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960009"] [rev "2.1.1"] [msg "Request Missing a User Agent Header"] [severity "NOTICE"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "kerozenn.fr"] [uri "/chosen.php"] [unique_id "ZsWkBhSy74RywjfkGZGOsgAAACQ"] [Wed Aug 21 10:23:34 2024] [error] [client 13.74.117.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_21_protocol_anomalies.conf"] [line "65"] [id "960009"] [rev "2.1.1"] [msg "Request Missing a User Agent Header"] [severity "NOTICE"] [tag "PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "kerozenn.fr"] [uri "/simple.php"] [unique_id "ZsWkBhSy74RywjfkGZGOtQAAAHA"] [Wed Aug 21 11:03:23 2024] [error] [client 54.37.63.15] [host kerozenn.fr] AH01630: client denied by server configuration: /homez.398/kerozenn/www/.htaccess [Wed Aug 21 11:24:58 2024] [error] [client 54.184.198.25] ModSecurity: Warning. Operator LT matched 20 at TX:inbound_anomaly_score. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_60_correlation.conf"] [line "32"] [msg "Inbound Anomaly Score (Total Inbound Score: 2, SQLi=, XSS=): Pragma Header requires Cache-Control Header for HTTP/1.1 requests."] [hostname "www.site.kerozenn.fr"] [uri "/kerozenn/img/p/6/5/5/655-medium_01oslo.jpg"] [unique_id "ZsWyapOfbjxnDCFceP32-gAAAwQ"] [Wed Aug 21 11:40:21 2024] [error] [client 90.28.12.24] ModSecurity: Warning. Operator LT matched 20 at TX:inbound_anomaly_score. [file "/usr/local/apache2/conf/modsecurity/base_rules/modsecurity_crs_60_correlation.conf"] [line "32"] [msg "Inbound Anomaly Score (Total Inbound Score: 2, SQLi=, XSS=): Multiple URL Encoding Detected"] [hostname "www.site.kerozenn.fr"] [uri "/kerozenn/admin6895/index.php/security/compromised"] [unique_id "ZsW2BUP8pJFUwoOYTiNVTQAAA0s"] Link to comment Share on other sites More sharing options...
Prestashop Addict Posted August 21 Share Posted August 21 Hi ça sent le hacking 😞 Link to comment Share on other sites More sharing options...
Mediacom87 Posted August 21 Share Posted August 21 La vague de hack est violente en ce moment, ceux qui ne prennent pas soins de leur boutique ont des retours de vacances compliqués. Des pistes pour aider https://www.mediacom87.fr/post/securite/ Link to comment Share on other sites More sharing options...
kerozenn Posted August 23 Author Share Posted August 23 Argh et dans ces cas là, qu'est-ce que je dois faire? Refaire un site ? Merci! Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now