Replies: 0

Hello,

I have a problem where the wordfence files in the tmp folder are not deleting, they are collecting up in large numbers and using all my disk space.

Both ‘Filesystem’ and ‘Wordfence Config’ are showing all green ticks.

The files are collecting in the /tmp/ folder which is alongside the /public_html/ folder.
An example file name is: ‘wordfence.7.1.7-X9RrFi.tmp’.
Each file is between 3-5 MB.
There are currently around 60 files in the folder.

The hosting is Linux provided by Siteground. Siteground support have suggested that I speak to the Wordfence devs about the issue.

Thanks

Replies: 0

This is the same problem as:
https://wordpress.org/support/topic/scan-terminated-with-error-unable-to-query-database/

I also have same problem, on several WordPress installations.
With phpMyAdmin I see the table as forever “in use” and with “no type” (no InnoDB, no Myisam).
Clicking on “show table content” returns: #1932 – Table ‘wp.wp_wfNet404s’ doesn’t exist in engine

I use MariaDB.

Do you have suggestions ?
Is reinstalling WordFence with “delete all data” the only solution ?

Would that be a better solution,
if we just delete all this tables and WordFence re-creates them automatically if they don’t exist ?
Is it already like this ?

Replies: 0

When I go to Appearance > Customize it comes up saying

This page isn’t working
[domain.com] is currently unable to handle this request.

(Replace [domain.com] for the actually website address, which I cannot post here for security reasons and client confidentiality.

When I disable WordFence it works fine. But when I activate it, I get the above error.
I’ve tried whitelisting the wp-admin/customize.php, but it won’t let me unless I enter something in the Param field, which I’m not sure what to enter.

I tried copying and pasting into the Param field all that appears after the ? after the URL. But that didn’t make any difference.

I’ve had to disable the plugin while I’m working in the Theme Customizer, which I don’t like doing, as I know I’m opening the site up to attack.

Please advise how I can rectify the issue and/or what I need to put in each of the field in the Whitelist URL section, if that’s the issue – or else, what is the issue?

Many thanks,
Jae

Replies: 0

In the Live Traffic, why does it only show logs for login activity but nothing else? My site doesn’t allow users to register accounts so the only login activity is coming from me and my employees. But I want to see activity from visitors who are coming to my site. Why doesn’t it show this information? The Firewall is enabled.

Replies: 0

At tip, my site says to To make your site as secure as possible, take a moment to optimize the Wordfence Web Application Firewall.

Should I do this?
Seems pretty scary, last thing I need it more wordpress glitches.

Isn’t the core reason I have wordfence already being achieved? Thanks.

Replies: 0

This has become a near-daily task over the past month. It crashes and I run the repair, then the next day it crashes again. What is causing this and how can this be prevented. It’s painful to have to fix this so often.

SELECT MAX(attackLogTime)
FROM wp_wfHits
+ Toggle button
wordfence::veryFirstAction()
Plugin: wordfence Table ‘.wordpress/wp_wfHits’ is marked as crashed and should be repaired 145

Replies: 0

Recently Updated my server and now have a Diagnostic Error.
Checking serialized config reading/: X Serialized config writing

The scan runs and finishes but the progress of: Server State, File Changes, Malware Scan, Content, Safety, Public Files, Password Strength, Vulnerability Scan, User & Option Audit – Do not clear and display anything is happening?

Here are some settings that may help you give me some direction.

MySQL Database version and privileges.
Database Version: 10.2.16-MariaDB
Checking if MySQL user has DELETE privilege: OK
Checking if MySQL user has INSERT privilege: OK
Checking if MySQL user has UPDATE privilege: OK
Checking if MySQL user has SELECT privilege: OK
Checking if MySQL user has CREATE TABLE privilege: OK
Checking if MySQL user has ALTER TABLE privilege: OK
Checking if MySQL user has DROP privilege: OK
Checking if MySQL user has TRUNCATE privilege: OK
PHP Environment PHP version, important PHP extensions.
PHP version >= PHP 5.2.4 (Minimum version required by WordPress): 7.0.30
Process Owner: bodysurf
Checking for OpenSSL support: OK
Checking OpenSSL version: OpenSSL 1.0.2k-fips 26 Jan 2017 (0x100020bf)
Checking for cURL support: 7.60.0 (0x73c00)
cURL Features Code: 0x2f839d
cURL Host: x86_64-redhat-linux-gnu
cURL Support Protocols: dict, file, ftp, ftps, gopher, http, https, imap, imaps, ldap, ldaps, pop3, pop3s, rtsp, scp, sftp, smb, smbs, smtp, smtps, telnet, tftp
cURL SSL Version: OpenSSL/1.0.2k
cURL libz Version: 1.2.7
Checking display_errors (Should be disabled on production servers): Off

Any advise would be appreciated, Thank You.

Replies: 0

Hi!
I’m using Wordfence 7.1.8 (1530033614) on my WordPress website.
In the list of the rules of the firewall there are “No rules currently set.”
When I press “Manually refresh rules”, I get the message “Rule Update Failed: No rules were updated. Please verify you have permissions to write to the /wp-content/wflogs directory.”

Diagnostics – Filesystem: everything is OK.
MySQL: everything is OK.
Connectivity: everything is OK.
The folder /wp-content/wflogs has 775 permissions.
Files attack-data.php, config.php and ips.php have 660 permissions; rules.php has 664; the file wafRules.rules didn’t exist, I created it with 775 permissions, but it changes automatically to 644. The owner of the folder and all the files is the web server.
I tried to remove the folder /wp-content/wflogs, it is recreated with the same result (4 php files with 660 and 664 permissions, no wafRules.rules, “File “wafRules.rules” does not exist” error in Diagnostics – Filesystem, the same message when trying to update the rules manually).

It seems to be the similar situation to https://wordpress.org/support/topic/cannot-update-rules/
But I don’t know which “IP address used for the WF updates” should I check, and still there are no errors in Diagnostics – Connectivity…

Is there any possibility to get wafRules.rules manually or solve the problem with automatic updates?

Wordpress ver. 4.9.7
PHP 7.0.22-1~dotdeb+8.1
MySQL 10.0.30-MariaDB-0+deb8u2
Server Debian 3.16.43-2+deb8u2 (2017-06-26)
nginx/1.12.1

• This topic was modified 6 hours, 52 minutes ago by mtkalich.

Replies: 0

I normally run all my WordPress installations as read-only, with no web ownership, so that neither WordPress nor the web server can write files, though it can still write to the DB. For the most part this is quite usable (e.g. I can still create posts, pages etc) and provides significant protection against many unknown vulns. However Wordfence isn’t happy to run this way, reporting “The Wordfence Web Application Firewall cannot run”. As far as I can see, all it’s actually complaining about is that it can’t write to the log file, which isn’t the same as not being able to run. So, I have two questions:

1. Can Wordfence be made to run correctly in such an environment?
2. Can the WAF log file be moved out of the web root to somewhere that I can allow it to write, but not be accessible via the web?

Replies: 0

I just set up a brand new website the other day. It does not have anything on it. No competing plugins. The scan function has not worked at all. Each time I try to scan it says “Scan Failed
The previous scan has failed. Some sites may need adjustments to run scans reliably. Click here for steps you can try.” I clicked that and was not able to use any of the info to solve the problem or could not make sense of it.
The scan does also return this:
“Your DNS records have changed
Type: DNS Change
Issue Found 6th July 2018 4:07 pm
Warning
DETAILS
Old DNS Records: us-east-1.route-1.000webhost.awex.io points to 145.14.145.219
New DNS Records: us-east-1.route-1.000webhost.awex.io points to 145.14.144.32
Details: We have detected a change in the A records of your DNS configuration that may affect the domain scientificrecord.000webhostapp.com. An A record is a record in DNS that points a domain name to an IP address. A change in your DNS records may indicate that a hacker has hacked into your DNS administration system and has pointed your email or website to their own server for malicious purposes. It could also indicate that your domain has expired. If you made this change yourself you can mark it ‘resolved’ and safely ignore it.”

I clicked the “mark as fixed” button and got the same thing 10 minutes later. It the DNS the reason why the scan won’t run?

I found in Diagnostics this: ” Wordfence Config Ability to save Wordfence settings to the database.” “Checking serialized config reading/writing
[can not] Serialized config writing” .

I also see this notification: “Scan failed: Scan can’t continue – stored data not found after a fork.”

Googling it I tried to do this: If you receive a scan error that says “Scan can’t continue – stored data not found after a fork. Got type: boolean”, try these steps.

On your Diagnostics page on the Wordfence Tools menu, scroll near the bottom and check the box to start scans remotely.
Save the changes and try a new scan. ” <<– I did that and got the same problem. I don’t have a “Got type: boolean” message though.

Replies: 0

I have installed Wordfence on a network/ multisite installation of WordPress. I only see Wordfence as an option when I am viewing the site as the Network Admin dashboard. I understand this is expected behavior.

My question comes because I have installed my multisite network to work with top level domains, not subdomains. For example, my two domains are catholicassist.com and trustinmercy.world, with catholicassist.com being my primary domain. It seems that Wordfence is only monitoring threats for catholicassist.com and not trustinmercy.world
It seems that is isn’t monitoring for the whole network, and if it is, I see no where to view the number of threats blocked.

Any assistance on how to get Wordfence on other top level domains for a Network installation would be appreciated.

I saw a similar thread, but not exactly the same, and @wfalaa answered a question about Network WordPress. I was hoping for a link to documentation, but I haven’t found any.

Do I need to purchase premium in order to get network wordpress support?

Replies: 0

Hi,

I understand that this issue might have been touched on many times before.
I also went through the many threads started on this but still I am not getting this firewall to work as it should be. I am using a free version of Wordfence and despite going through all the steps and contacting siteground, I am still not able the “To make your site as secure as possible, take a moment to optimize the Wordfence Web Application Firewall’ notice disappear.

Steps I have taken:

1) Create a php.ini file in your installation root folder and add the following line:
auto_prepend_file = ‘/home/youruser/public_html/yourdomain.com/wordfence-waf.php’

2) I add also this line to my root .htaccess file:
SetEnv PHPRC /home/youruser/public_html/yourdomain.com/php.ini

So, my website file manager already show a php.ini file and htaccess file in the root directory of the wordpress installation. Both the php.ini file and the htaccess fle both show the correct code as set above. I select Apache+CGI/FastCGI as that is what is shown in the server api of the wordfence diagnostics. Also, under auto-append, the correct path of the wordfence php is also shown in both local value and master value. Judging by what is detailed in many threads here as resolved, I should be be able to configure it properly. But I am still not able to. I have checked with siteground and there is no issue with my pool php settings or auto append as disabled. So, I am really puzzled.

Any assistance will be highly appreciated.

Replies: 0

I have been having an issue where WF takes down my database server due to heavily loads, what can I do to correct this?

MySQL service was consuming 16% avg RAM over the past hour that eventually chocked memory and caused the server to crash.

I can submit an image with the top queries and load statistics.

Thanks,
Greg

Replies: 0

For about the past two weeks my Wordfence live traffic log has not been keeping, well, a log, recording maybe one or two hits a day and ignoring or purging other visits.

I know this is correct because I have a separate installation of statcounter which is working.

The overhaul of the live traffic architecture hasn’t been a friend to Wordfence, anyway, so I’m just wondering what’s going on. Thank you.

Replies: 0

I was able to log into my WordPress site as usual. But when i went to
check the homepage, it was replaced with a white screen with this
message:

Fatal error: Uncaught Error: Call to undefined function hash() in
/home/public/wp-content/plugins/wordfence/lib/wfLog.php:47 Stack
trace: #0
/home/public/wp-content/plugins/wordfence/lib/wfLog.php(133):
wfLog::isHumanRequest('182.74.131.106', 'Mozilla/5.0 (Wi...') #1
/home/public/wp-includes/class-wp-hook.php(286):
wfLog->actionSetRequestJSEnabled('') #2
/home/public/wp-includes/class-wp-hook.php(310):
WP_Hook->apply_filters(NULL, Array) #3
/home/public/wp-includes/plugin.php(453): WP_Hook->do_action(Array) #4
/home/public/wp-settings.php(471): do_action('wp_loaded') #5
/home/[PATH EXCISED]/wp-config.php(89): require_once('/home/public/wp...')
#6 /home/public/wp-config.php(3): require_once('/home/protected...')
#7 /home/public/wp-load.php(37): require_once('/home/public/wp...') #8
/home/public/wp-blog-header.php(13):
require_once('/home/public/wp...') #9 /home/public/index.php(17):
require('/home/public/wp...') #10 {main} thrown in
/home/public/wp-content/plugins/wordfence/lib/wfLog.php on line 47

I update my plugins using wp-cli, Lately i have noticed
that after updating the Wordfence plugin, I have to manualy FTP in edit permissions for waf and wflogs for the firewall component to work. But this is the first time it crashed the homepage itself though.

Here’s what my host (Nearly Free Speech) had to say:

Place your site in maintenance mode for at least 2 minutes and see if doing so
resolves this issue.

This is a PHP bug that was resolved several days ago. I can't guess why you're
still experiencing it now unless your site has been quite active, but restarting
all affected processes should make sure you are running the new/fixed code.

Doing that fixed it…but when restarted, the plugin page threw a warning that the plugin could not be activated due to a fatal error, but I verified that it has indeed been activated. It seems it was a permissions issue once again with waf and wflogs.

Everything is fine now but I am keeping my fingers crossed.

• This topic was modified 5 hours, 4 minutes ago by techtangerine.

Replies: 0

Hello Commuinty,

i have move my website from a hoster to a other hoster. I have change the config from WordPress and upload the SQL DB. But now if i go to the Site they say:

Warning: Unknown: failed to open stream: No such file or directory in Unknown on line 0

Warning: Unknown: failed to open stream: No such file or directory in Unknown on line 0

Fatal error: Unknown: Failed opening required ‘/var/www/web25586998/html/wordfence-waf.php’ (include_path=’.:/opt/php/7.0.27/share/pear’) in Unknown on line 0

Can anyone me help ? What i must do to fix this error?

Sorry for bad english :*

Replies: 0

Wordfence scan shows me these alert. I couldn’t understand what is it. Could you please tell me. is my site hacked?

Warnings:
* Unknown file in WordPress core: wp-admin/css/colors/blue/php.ini
* Unknown file in WordPress core: wp-admin/css/colors/coffee/php.ini
* Unknown file in WordPress core: wp-admin/css/colors/ectoplasm/php.ini
* Unknown file in WordPress core: wp-admin/css/colors/light/php.ini
* Unknown file in WordPress core: wp-admin/css/colors/midnight/php.ini
* Unknown file in WordPress core: wp-admin/css/colors/ocean/php.ini
* Unknown file in WordPress core: wp-admin/css/colors/php.ini
* Unknown file in WordPress core: wp-admin/css/colors/sunrise/php.ini
* Unknown file in WordPress core: wp-admin/css/php.ini
* Unknown file in WordPress core: wp-admin/images/php.ini
* Unknown file in WordPress core: wp-admin/includes/php.ini
* Unknown file in WordPress core: wp-admin/js/php.ini
* Unknown file in WordPress core: wp-admin/js/widgets/php.ini
* Unknown file in WordPress core: wp-admin/maint/php.ini
* Unknown file in WordPress core: wp-admin/network/php.ini
* Unknown file in WordPress core: wp-admin/php.ini
* Unknown file in WordPress core: wp-admin/user/php.ini
* Unknown file in WordPress core: wp-includes/ID3/php.ini
* Unknown file in WordPress core: wp-includes/IXR/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Auth/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Cookie/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Exception/HTTP/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Exception/Transport/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Exception/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Proxy/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Response/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Transport/php.ini
* Unknown file in WordPress core: wp-includes/Requests/Utility/php.ini
* Unknown file in WordPress core: wp-includes/Requests/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/Cache/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/Content/Type/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/Content/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/Decode/HTML/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/Decode/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/HTTP/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/Net/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/Parse/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/XML/Declaration/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/XML/php.ini
* Unknown file in WordPress core: wp-includes/SimplePie/php.ini
* Unknown file in WordPress core: wp-includes/Text/Diff/Engine/php.ini
* Unknown file in WordPress core: wp-includes/Text/Diff/Renderer/php.ini
* Unknown file in WordPress core: wp-includes/Text/Diff/php.ini
* Unknown file in WordPress core: wp-includes/Text/php.ini
* Unknown file in WordPress core: wp-includes/certificates/php.ini
* Unknown file in WordPress core: wp-includes/css/php.ini
* Unknown file in WordPress core: wp-includes/customize/php.ini
* Unknown file in WordPress core: wp-includes/fonts/php.ini
* Unknown file in WordPress core: wp-includes/images/crystal/php.ini
* Unknown file in WordPress core: wp-includes/images/media/php.ini
* Unknown file in WordPress core: wp-includes/images/php.ini
* Unknown file in WordPress core: wp-includes/images/smilies/php.ini
* Unknown file in WordPress core: wp-includes/images/wlw/php.ini
* Unknown file in WordPress core: wp-includes/js/codemirror/php.ini
* Unknown file in WordPress core: wp-includes/js/crop/php.ini
* Unknown file in WordPress core: wp-includes/js/imgareaselect/php.ini
* Unknown file in WordPress core: wp-includes/js/jcrop/php.ini
* Unknown file in WordPress core: wp-includes/js/jquery/php.ini
* Unknown file in WordPress core: wp-includes/js/jquery/ui/php.ini
* Unknown file in WordPress core: wp-includes/js/mediaelement/php.ini
* Unknown file in WordPress core: wp-includes/js/mediaelement/renderers/php.ini
* Unknown file in WordPress core: wp-includes/js/php.ini
* Unknown file in WordPress core: wp-includes/js/plupload/php.ini
* Unknown file in WordPress core: wp-includes/js/swfupload/php.ini
* Unknown file in WordPress core: wp-includes/js/thickbox/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/langs/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/charmap/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/colorpicker/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/compat3x/css/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/compat3x/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/directionality/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/fullscreen/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/hr/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/image/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/link/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/lists/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/media/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/paste/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/tabfocus/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/textcolor/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wordpress/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wpautoresize/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wpdialogs/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wpeditimage/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wpemoji/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wpgallery/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wplink/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wptextpattern/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/plugins/wpview/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/skins/lightgray/fonts/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/skins/lightgray/img/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/skins/lightgray/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/skins/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/skins/wordpress/images/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/skins/wordpress/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/themes/inlite/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/themes/modern/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/themes/php.ini
* Unknown file in WordPress core: wp-includes/js/tinymce/utils/php.ini
* Unknown file in WordPress core: wp-includes/php.ini
* Unknown file in WordPress core: wp-includes/pomo/php.ini
* Unknown file in WordPress core: wp-includes/random_compat/php.ini
* Unknown file in WordPress core: wp-includes/rest-api/endpoints/php.ini
* Unknown file in WordPress core: wp-includes/rest-api/fields/php.ini
* Unknown file in WordPress core: wp-includes/rest-api/php.ini
* Unknown file in WordPress core: wp-includes/theme-compat/php.ini
* Unknown file in WordPress core: wp-includes/widgets/php.ini
NOTE: You are using the free version of Wordfence. Upgrade today:

• This topic was modified 10 minutes ago by geetha14.

Replies: 0

When I go to my site, this is the error I get:
Parse error: syntax error, unexpected ‘[‘ in /home/content/41/11429541/html/wp-content/plugins/wp-responsive-menu/inc/wprmclass.php on line 6
Please help!

Replies: 0

Quick, somewhat dumb question:

My site uses usernames to login which are not tied to my real name, but those usernames are tied to email accounts that *do* use my real name.

Thing is, I’ve been receiving notices of people trying to use my real name to log into my site, and Wordfence says they’ve registered 6 failed logins with an “existing” username aka my email address. So the scenario is something like this:

Current WP login I use:

Username: Admin123
Email: real.name@emailprovider.com

Failed logins:
Invalid Username 1: real.name
Invalid Username 2: real.name@emailprovider.com

If I set “Immediately block the IP of users who try to sign in as these usernames” for Invalid username 2, will I be blocking myself out? Thanks!

Edited: I am hosting a website with my real name on the same hosting, but this login scam is attacking the site that DOESN’T have my real name.

• This topic was modified 6 minutes ago by Ionna. Reason: clarification

Replies: 0

Hi Support Team,

I am getting below error when I try to update to Version 7.1.7. I am sure and i am having full permission to write files.

Update Failed: The update cannot be installed because we will be unable to copy some files. This is usually due to inconsistent file permissions.

Thanks
Hemadri