Mod_rewrite security issues

Forum Moderators: phranque

Message Too Old, No Replies

Mod_rewrite security issues

DumpedbyG

12:15 pm on Jul 7, 2005 (gmt 0)

Our hosting company does not want to install the Mod_rewrite module. They claim this is because of security reasons. Does anybody know of any security issues with the Mod_rewrite module, and can it be offer come?

jdMorgan

6:17 pm on Jul 7, 2005 (gmt 0)

It's *their* security. not yours, that they are worried about. Enabling mod_rewrite means that they have to provide customer support for mod_rewrite, and it costs them money. So cheap hosting services often do not allow user access to mod_rewrite and other technically-demanding, powerful modules.

Often, the easiest solution is to change hosts -- many companies allow users to have the control they need, and there's no reason to stick with a host that does not.

Jim

DumpedbyG

6:50 pm on Jul 8, 2005 (gmt 0)

Thanks Jim

Thought something like that, probably time to move on

Webdetective

5:45 pm on Jul 10, 2005 (gmt 0)

I know personally, my webhost's mod_security has caused problems with some of my scripts, so I've had to bug my webhost to modify the rules or turn it off.