Data at Your Fingertips: Explore Our New Reporting and Statistical Capabilities By Ryan Ashbrook Tuesday at 01:29 PM
Mercury Forever Posted February 6 Share Posted February 6 Hello, when entering the invoice module, the system presents the error HTTP ERROR 500 Regards, Link to comment Share on other sites More sharing options...
Marc Stridgen Posted February 6 Share Posted February 6 Please check your servers error logs first of all. An internal server error will be logged on the server itself. Link to comment Share on other sites More sharing options...
Mercury Forever Posted March 21 Author Share Posted March 21 Hello @Marc Stridgen, after some time, I have managed to get to the error in the APACHE error.log file, which is logged when I enter some options of the NEXUS module. Quote [Mon Mar 20 23:24:06.705962 2023] [security2:error] [pid 19916] [client xxx.xxx.xxx.xxx:62383] [client xxx.xxx.xxx.xxx] ModSecurity: collections_remove_stale: Failed to access DBM file "/var/cpanel/secdatadir/YYYYYYY-default_SESSION": Permission denied [hostname "www.YYYYYYY.cl"] [uri "/foro/ZZZZZZ/index.php"] [unique_id "ZBkVRoQCWYaJb1JyJXVaIAAAAQE"], referer: https://www.YYYYYYY.cl/foro/ZZZZZZ/?app=nexus&module=payments&controller=transactions&do=&attn=1 Link to comment Share on other sites More sharing options...
Randy Calvert Posted March 21 Share Posted March 21 This looks to be your host using mod_security which is blocking the request. You can ask them to disable it or work with them to tune the rule to not block the it. Link to comment Share on other sites More sharing options...
Mercury Forever Posted March 21 Author Share Posted March 21 Is it related to the permissions of the files contained in the path indicated in the error? PATH: /var/cpanel drwxrwx--T. 2 root nobody 4096 mar 20 22:00 secdatadir total 0 -rw-r-----. 1 nobody nobody 0 mar 20 22:00 nobody-default_SESSION.dir -rw-r-----. 1 nobody nobody 0 mar 20 22:00 nobody-default_SESSION.pag -rw-r-----. 1 nobody nobody 0 mar 20 22:00 nobody-ip.dir -rw-r-----. 1 nobody nobody 0 mar 20 22:00 nobody-ip.pag Link to comment Share on other sites More sharing options...
Randy Calvert Posted March 21 Share Posted March 21 https://forums.cpanel.net/threads/modsecuirty-var-cpanel-secdatadir-ip.623203/ I would start with that. But again… this is a server issue, not an IPB issue. Link to comment Share on other sites More sharing options...
Marc Stridgen Posted March 21 Share Posted March 21 As mentioned above, you ned to contact your hosting company regarding this issue, as your server itself is blocking things you dont want it to be blocking. Link to comment Share on other sites More sharing options...
Mercury Forever Posted March 21 Author Share Posted March 21 @Marc Stridgen, How do I explain to the hosting that ONLY one module of my application has this error??? How do I tell it that it is only when I want to see the payment configuration in the IPS NEXUS MODULE???? I would appreciate some empathy and guidance as to where the error could go by entering only the NEXUS module. Regards, 11 hours ago, Randy Calvert said: I would start with that. But again… this is a server issue, not an IPB issue. Thank's, I understand that it is a server error, but the hosting provider, when a single module fails, will tell me that it is an application problem. It is the typical dispute where everyone passes the responsibility from one side to the other. Link to comment Share on other sites More sharing options...
Marc Stridgen Posted March 21 Share Posted March 21 Sorry, Im not sure what you are asking there. You would simply explain to them what is happening, and tell them your server is blocking it Link to comment Share on other sites More sharing options...
Mercury Forever Posted March 24 Author Share Posted March 24 @Marc Stridgen, I just did the same test, enter the NEXUS invoice module in the TEST environment and I don't have the 500 error, is this still considered a hosting error??? Link to comment Share on other sites More sharing options...
Marc Stridgen Posted March 24 Share Posted March 24 If it is being blocked by mod_security as you show in the first post, then yes. As its being blocked by a hosting item Link to comment Share on other sites More sharing options...
Mercury Forever Posted March 27 Author Share Posted March 27 But the mod_security affects all the configuration on the server (apache service), but I only see the behavior in the URL of my production environment, not in the URL of the TEST environment. Both environments are hosted on the same server under cpanel, therefore they share the configuration. Link to comment Share on other sites More sharing options...
Makoto Posted March 27 Share Posted March 27 Does your test environment also have active invoices, transactions and everything else configured the same way in Nexus as on your production site? Either way, it's still an issue somehow specific to your server environment. Link to comment Share on other sites More sharing options...
Randy Calvert Posted March 28 Share Posted March 28 14 hours ago, Mercury Forever said: But the mod_security affects all the configuration on the server (apache service), but I only see the behavior in the URL of my production environment, not in the URL of the TEST environment. Both environments are hosted on the same server under cpanel, therefore they share the configuration. Actually not necessarily. mod_security can be controlled on a per hostname basis. You're likely to have problems until that mod_security error goes away. IPS cannot troubleshoot that as it's outside of the software. You would need to work with your hosting provider. Link to comment Share on other sites More sharing options...
Recommended Posts