403 Forbidden message - please help

[charieda]

Hello, I am getting a 403 Forbidden message when trying to make modifications on a page through a plugin on Wordpress. The website works in general. File permissions settings and htaccess file seem ok.

http://chariedawn.x10host.com/rmt_va/wordpress rmt/

I've investigated plugins I'm using and have narrowed it down to one but the help centre of the plugin has directed me to asking the hosting provider about security features.

Please help.

Thank you.

 

[caftpx10]

What do the modifications involve? HTML? JavaScript? PHP? Any links (and if so how many)?
Mod_security2 is in use (security module for the web server) so it's possible that you're hitting an active rule.

 

[charieda]

What do the modifications involve? HTML? JavaScript? PHP? Any links (and if so how many)?
Mod_security2 is in use (security module for the web server) so it's possible that you're hitting an active rule.

Well I am essentially editing a page through wordpress but I'm using a plugin. I assume it involves HTML, JS, PHP. I only get the 403 message when editing the pages with this plugin. But again, the plugin support has directed me to the hosting service...

 

[charieda]

I am using this to work on a client's project and I would really like to get some help on this issue. I don't see any other way to get help except through the forum here.

Should I provide more info? Or screen shot anything to might help in understanding the issue?

 

[caftpx10]

Some of the security rules would check if you're posting code and links (amount of links matter too). The keyword is 'posting'.
So if there was some code or links before and it shows up raw within the editor then that would mean that would get posted if it's left in (if you save it, of course). Mod_security2 will use active rules to look out for anything that is deemed unacceptable.
(It's possible for there to be other rules such as one that would check the name of the text box [used for the editor] and a few common words used in spam posts but those are way less common to hit as far as I'm aware of.)

Someone with sufficient access should be able to turn off the rules for your account if they come along this thread and have enough time to resolve the issue.

If you wish to figure out what in the post is triggering a rule yourself, you can make a backup of the original, exclude parts of the content and then attempt to save it. If it eventually goes through without an issue then what was just removed (or at least part of it) is the issue.

 

[charieda]

Some of the security rules would check if you're posting code and links (amount of links matter too). The keyword is 'posting'.
So if there was some code or links before and it shows up raw within the editor then that would mean that would get posted if it's left in (if you save it, of course). Mod_security2 will use active rules to look out for anything that is deemed unacceptable.
(It's possible for there to be other rules such as one that would check the name of the text box [used for the editor] and a few common words used in spam posts but those are way less common to hit as far as I'm aware of.)

Someone with sufficient access should be able to turn off the rules for your account if they come along this thread and have enough time to resolve the issue.

If you wish to figure out what in the post is triggering a rule yourself, you can make a backup of the original, exclude parts of the content and then attempt to save it. If it eventually goes through without an issue then what was just removed (or at least part of it) is the issue.

Thank you for your help in explaining this. Hope someone can look into this..