Vadim I don't know how to see Plugin version, in the Update folder there is 6272 as last version.
However I think that's better to follow ross' instructions about this:)
Vadim I don't know how to see Plugin version, in the Update folder there is 6272 as last version.
However I think that's better to follow ross' instructions about this:)
the only things that they can do are:
They can do something about the particular rule in the mod_sec that are causing this
If I send to them screenshot of that error with my ip they could lift it by mod_sec.
My problem is after updated that with a newest version
The problem is when I update that plugin, I think that Photo Plugin now, in 1.7 is using Flash Player too.
I could try to speak with Godaddy for this problem, I payed that host less then 1 month ago I can't change it now.
They said to me to explain that problem and they could fix it
POST http://venom.hph.photography/...=0.05988057656213641 406 (Not Acceptable) jquery.min.js:6x.support.cors.e.crossDomain.send jquery.min.js:6x.extend.ajax jquery.min.js:6loadComponent ow.js?53c967a07f639:361ajaxFloatBox ow.js?53c967a07f639:402window.addNewPhoto53d0b7f820b7b (index):1098(anonymous function) VM92:1
If I keep old Plugin are there problems?
In the worst case default Photo Plugin on 1.7 works good, the problem is after update, because I think that it becomes Ajax based.
The strange thing is that works on "Album Upload mode".... also updated..
I have the same problem.
I asked my webhost to disable mod_security.
They said:
It's not recommended to disable the mod security rule as it will lead to security vulnerability and mysql injections.
I asked them to do it anyway.
I am new to oxwall, but I am curious. If it worked with mod_security enabled before version 1.7, what was changed in the programing that required this potential security vulnerability to be required, and was it worth it?
he Kurt,
I was doing some reading here...here's your answer from Ross
in 1.6 we used flash upload now we use ajax and for some reason mod_security module on your server considers that as a threat to the server and block it, you will need to disable it or find another hosting provider. as I said earlier, Godaddy is not recommended hosting provider.Wilson
Thanks Wilson
I still wonder what benefit the change was, and whether disabling mod_security poses any vulnerability risks to my website.
Thanks Ross
My host disabled mod_security and now photos and videos work fine.
I will have a conversation with them about disabling only some of the settings.