!Hubzilla Support Forum
I’ve installed Hubzilla on a server managed by Plesk, which uses ModSecurity (a “web application firewall”). Some of what Hubzilla gets up to collides with the default rule set Plesk feeds to ModSecurity. For example, some URLs Hubzilla creates for the “chanview” page embed the URL of the channel to view as an argument of the chanview link. ModSecurity interprets this as a potential RFI attack, and blocks the request. Fixing this requires an adjustment to Plesk’s default ModSecurity rules. I’m wondering if anyone has written up details of making these kinds of adjustments, or of installing Hubzilla on Plesk-managed servers in general. In particular, what other rules might need adjusted? Thanks.