Modsecurity Execution error - PCRE limits exceeded (-47)

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • imorandin
    Junior Member
    Forum Explorer
    • Jul 2017
    • 23
    #1

    Modsecurity Execution error - PCRE limits exceeded (-47)

    Hi,

    We're occasionally seeing the following errors in the Apache error_log:

    Code:
    [Wed Dec 03 11:32:52.775133 2025] [security2:error] [pid 2737351:tid 2737351] [client 186.22.19.226:0] ModSecurity: Rule 563f521ffeb8 [id "-"][file "/etc/apache2/conf.d/modsec_vendor_configs/imunify360-full-apache/013_i360_generic.conf"][line "118"] - Execution error - PCRE limits exceeded (-47): (null). [hostname "xxxx.com.ar"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aTBKFD70y_vck7R3WBthfAAAAAg"], referer: [URL]http://xxxxx.com.ar/wp-admin/post-new.php[/URL]
    From what I understand, this is caused by PCRE limits being hit when ModSecurity processes certain requests.
    I assume we need to increase the following directives, but I’m not sure what values are recommended in this case:
    • SecPcreMatchLimit
    • SecPcreMatchLimitRecursion

    Could you advise what values we should use, or if there’s a preferred approach to handle this type of error?

    Thanks,
    Ignacio
    Tags: None
    • akots
      Administrator
      • Mar 2023
      • 110
      #2
      Hi Ignacio,

      The errors you shared are caused by the content that the rules are inspecting. In certain cases, the inspected content may be so complex that ModSecurity stops itself from "doing too much work".

      You may have to add these limits with the following values:

      Code:
      SecPcreMatchLimit 25000
SecPcreMatchLimitRecursion 25000
      or increase these limits for your system if you continue to get PCRE limit errors.

        Comment

        Previous template Next
        Working...

        We process personal data about users of our site, through the use of cookies and other technologies, to deliver our services, personalize advertising, and to analyze site activity. We may share certain information about our users with our advertising and analytics partners. For additional details, refer to our Privacy Policy.

        By clicking "I AGREE" below, you agree to our Privacy Policy and our personal data processing and cookie practices as described therein. You also acknowledge that this forum may be hosted outside your country and you consent to the collection, storage, and processing of your data in the country where this forum is hosted.

        I Agree