Databases
StackOverflow2013
Postsdbo
POModSecurity issue - Sticky SessionID Data changed
Body
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POModSecurity issue - Sticky SessionID Data changed
    text
    copied!<p>I've been wallbashing my head on this problem for a couple of days and I'm totally out of ideas.<br> We are moving our site to a new host.<br> Our site works BOTH in local AND on the old host.<br> No changes made to the code, but the new host bans our IP after a few refreshes.<br> No errors seem to be given by PHP/Apache.<br> Eventually, we could get these few lines of log from our new host:</p> <pre><code> [Mon Jun 17 07:46:45 2013] [error] [client 79.1.74.166] ModSecurity: Access denied with code 404 (phase 1). Match of "streq %{SESSION.IP_HASH}" against "TX:ip_hash" required. [file "/usr/local/apache/conf/modsec_rules/70_asl_csrf_experimental.conf"] [line "56"] [id "340206"] [msg "Warning - Sticky SessionID Data Changed - IP Address Mismatch."] [hostname "194.28.116.82"] [uri "/~aquaelit/serie.php"] [unique_id "Ub6ixcIcdFIAAGgWchQAAAAO"] [Mon Jun 17 07:46:45 2013] [error] [client 79.1.74.166] ModSecurity: Access denied with code 404 (phase 1). Match of "streq %{SESSION.IP_HASH}" against "TX:ip_hash" required. [file "/usr/local/apache/conf/modsec_rules/70_asl_csrf_experimental.conf"] [line "56"] [id "340206"] [msg "Warning - Sticky SessionID Data Changed - IP Address Mismatch."] [hostname "194.28.116.82"] [uri "/~aquaelit/cms/prodotti/index.php"] [unique_id "Ub6ixcIcdFIAAFgPg3MAAAAD"] [Mon Jun 17 07:46:48 2013] [error] [client 79.1.74.166] ModSecurity: Access denied with code 404 (phase 1). Match of "streq %{SESSION.IP_HASH}" against "TX:ip_hash" required. [file "/usr/local/apache/conf/modsec_rules/70_asl_csrf_experimental.conf"] [line "56"] [id "340206"] [msg "Warning - Sticky SessionID Data Changed - IP Address Mismatch."] [hostname "194.28.116.82"] [uri "/~aquaelit/cms/prodotti/sys_cpanel/images/bottombody.jpg"] [unique_id "Ub6iyMIcdFIAAHqUzh4AAAAA"] [Mon Jun 17 07:46:48 2013] [error] [client 79.1.74.166] ModSecurity: Access denied with code 404 (phase 1). Match of "streq %{SESSION.IP_HASH}" against "TX:ip_hash" required. [file "/usr/local/apache/conf/modsec_rules/70_asl_csrf_experimental.conf"] [line "56"] [id "340206"] [msg "Warning - Sticky SessionID Data Changed - IP Address Mismatch."] [hostname "194.28.116.82"] [uri "/~aquaelit/sys_cpanel/images/bottombody.jpg"] [unique_id "Ub6iyMIcdFIAABEoS14AAAAH"] [Mon Jun 17 07:46:50 2013] [error] [client 79.1.74.166] ModSecurity: Access denied with code 404 (phase 1). Match of "streq %{SESSION.IP_HASH}" against "TX:ip_hash" required. [file "/usr/local/apache/conf/modsec_rules/70_asl_csrf_experimental.conf"] [line "56"] [id "340206"] [msg "Warning - Sticky SessionID Data Changed - IP Address Mismatch."] [hostname "194.28.116.82"] [uri "/favicon.ico"] [unique_id "Ub6iysIcdFIAABEnSQoAAAAG"] </code></pre> <p>As far as I've understood, it looks like our IP changes during a session. Well this simply cannot be, so I'm asking if any of you has an idea about what's going on.<br/> My web search so far have been pointless and we feel lucky when we receive a mail from support once a day, se before we change host again, I'm asking here.<br/> Thanks in advance.</p>
 

Querying!

 
Guidance
An individual column

Larger individual text columns get their own page to allow for proper reading.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload