Login to download the latest version of Mint and your favorite Pepper, purchase additional licenses, or post in the Forum. Don't have an account? Create one!
Search haveamint.com
In Partnership with Media Temple

Mint Forum

Older | Newer

Mint refuses to track pages with titles with codes like &-#-8-2-1-7-;-s

JCFP
Minted
Posted on Apr 23, '08 at 09:58 am

by accident, i discover that mint refuses to track pages (most notably with secret crushes and referrers pepper, and may be main mint as well) that contain codes in the title, such as &-#-8-2-1-7-;-s (i hyphenated the code for clarity), that are used to denote contractions or punctuations like apostrophes and quotation marks. because my site has many many pages that includes these codes used in the title, Mint is giving me stats that are much lower than the stats from awstats using the sever log.

can someone verify this?

Shaun Inman
Mint/Pepper Developer
Posted on Apr 23, '08 at 10:12 am

Your Mint is running in Paranoid mode so I can’t troubleshoot this. However, this is known issue caused by an overzealous mod_security rule. (Mint isn’t refusing to track the page, mod_security is refusing to let Mint track the page.) In which case you should disable mod_security for your Mint directory.

JCFP
Minted
Posted on Apr 23, '08 at 12:03 pm

ok, shaun, i am trying this out…

if this is the cause, which of the stats will be under-reported? everything (including the # of unique IP and total visits)? or is it just secret crush and referrers peppers that are affected?

lastly, since i have been using Mint since 1.0+ and now just discovered this issue, are you implying that all my stats are incorrect (for everything i collected with v1 and v2.0, v2.1)?

JCFP
Minted
Posted on Apr 23, '08 at 12:16 pm

also, shaun,

can you explain why these HTML codes &-#-8-2-1-7-;-s are considered security risk so that the mod_security is interfering with Mint operation?

Shaun Inman
Mint/Pepper Developer
Posted on Apr 25, '08 at 02:29 pm

if this is the cause, which of the stats will be under-reported?

It’s not a question of under-reported, if mod_security prevents the server from responding to a request then nothing can be recorded for those urls.

can you explain why these HTML codes are considered security risk?

I can’t. I don’t think they are a security issue as much as they are a potential flag for comment and referrer spam (neither of which would affect Mint). I’ve tried contacting the maintainers of mod_security to get to the root of the issue but I received no reply.

JCFP
Minted
Posted on Apr 25, '08 at 02:44 pm

shaun,

to which version of mint does this mod_security issue apply? 1.x, 2.13, 2.14, 2.15?

i have changed the mod_security, and i am now seeing a jump in the stats, so i do believe this was part of the problem.

Shaun Inman
Mint/Pepper Developer
Posted on Jun 09, '08 at 08:52 am

Because this is a mod_security issue it applies to all versions of Mint.

Older | Newer

You must be logged in to reply. Login above or create an account

Still feeling green?
Feature highlights
Screenshots and screencasts
Requirements
Hard sell?
Live demo
License
Create an account
Purchase Mint
Before giving Mint a timeout
Compatibility Suite
FAQs
Mint Forum
Contact
From the horse's mouth
Peppermill
Mint Forum
Account Center