Website Dropdown not working


#1

Hi,
For those with Mod Security running, you’ll probably find that the Piwik Website dropdown menu will be broken.

For us it was the Mod Security rule 1234123440 that was blocking things. Temporarily deactivating this mod security rule for your Piwik hosted site will get the Website Dropdown menu working again.

Mod Sec Message: Access denied with code 406 (phase 2). Pattern match “\%(?![0-9a-fA-F]{2}|u[0-9a-fA-F]{4})” [id “1234123440”] [msg “URL Encoding Abuse Attack Attempt”] [severity “WARNING”]

Matt - Hope you can tweak piwik so it doesn’t trigger the Mod Security rule.

You can get by without a functioning Website Dropdrown box - until you need to add a new user and give them access to a website. That’s when you get snookered.

Keep up the good work Matt and crew! Its a scarely thought that Google is collectively collecting visitor data with the widespread of Google Analytics. One company with all that data is dangerous - in theory they can trace people’s activity on the internet without consent across every website that has Analytics. I hope one day people will realise the importance of Piwik.


(Matthieu Aubry) #2

Thanks for the message and kind words! Yes, Google Analytics is worrying considering how much data they are able to collect about maybe 70 or 80% of internet traffic worldwide.

Regarding mod_security unfortunately we prefer not to work around mod_security, since this module has many issues and buggy rules. Instead we recommend to disable mod_security for Piwik files only, see this faq: How do I configure Piwik when mod_security (or CA SiteMinder) is enabled? - Analytics Platform - Matomo