OK guys this is probably an easy one but I just installed and started playing with EE last night. I am trying to set the paths for my thumbs and microthumbs and it won't let me. If I go in to the path editor and either change an existing path or try to add a new path, it tells me "Security rules violation. Your IP is logged. Please click here." What could the problem be? I have CHMODded the directories as instructed as far as I know so why can't I make changes to the path assignments?

Thanks
Todd

"Security rules violation. Your IP is logged. Please click here." is not a message from EE. Better contact your server admin about what is going on.

Thanks Pekka. I looked at their FAQ and it seems that this is the answer:

"All dh2.net's Apache web servers are using mod_security. The default settings disallow any invalid bytes, invalid URL and unicode encoding, HTTP upload, '../', '/etc', HTML tags, Javascript tags, PHP tags and common SQL commands in the HTTP GET and POST payload. This is an attempt to prevent server pokings, buffer overflow exploits, cross-site scripting attacks (HTML/Javascript/PHP injection) and SQL injection attacks."

This is rather disappointing. I really want to run EE but it looks like from this that my host won't allow it...

Todd

If they use mod_security, then they can disable it for you EE's input folder. But the error triggering rules they use is very odd. Path Editor for example, when you click "add new path" sends POST array key "add_all" and GET array keys "dt", "lang" and "exhibition". That should not trigger any security measures!

Only place in EE's editor which might trigger mod_security is when you click "open photo browser" link and browse those photos there. It uses "old style" variable passing in $_GET, which contains lots of URL data.