Last Rule

March 20, 2019, 12:28 am

Replies: 0

Hello. I am getting this Notification from 2 to 3 Dyas on my Dashboard. The last rules update for the Wordfence Web Application Firewall was unsuccessful. The last successful update check was March 9, 2019, 10:56 am, so this site may be missing new rules added since then. You may wait for the next automatic attempt at March 23, 2019, 10:56 am or try to Manually Update by clicking the “Manually Refresh Rules” button below the Rules list. Help me please.

2nd thing is that from the last 2 Months. Wordfence is Blocking a lot of Users from USA. A lot of USA IPs are blocked by Wordfence

↧

MySQL Privileges

March 20, 2019, 1:23 am

≫ Next: Alert – Your DNS records have changed

≪ Previous: Last Rule

Replies: 0

Hi,

Wordfence Diagnostics shows “FAIL” for all MySQL privileges. I’ve been running Wordfence for about two years on this website and suspect that this is a new error – I only discovered it because Wordfence has not been able to update the rules for some time.

How can I set the correct privileges? Any help is greatly appreciated!

Regard,

Gerhard

↧

Alert – Your DNS records have changed

March 20, 2019, 4:42 am

≫ Next: Unable to update rules

≪ Previous: MySQL Privileges

Replies: 0

Just received a “Your DNS records have changed” alert on the WordFence dashboard (see below). I haven’t updated CNAME records, DNS records are the same and it doesn’t look like I’ve been hacked. The only recent change made was updating the WordPress and Site URL under General Settings in the WordPress dashboard. Would this be the trigger for the WordFence alert? Loving the plugin. Keep up the great work!

Old DNS Records: http://www.example.com points to example.com
New DNS Records:

Details: We have detected a change in the CNAME records of your DNS configuration for the domain runbulldogrun.com. A CNAME record is an alias that is used to point a domain name to another domain name. For example foo.example.com can point to bar.example.com which then points to an IP address of 10.1.1.1. A change in your DNS records may indicate that a hacker has hacked into your DNS administration system and has pointed your email or website to their own server for malicious purposes. It could also indicate that your domain has expired. If you made this change yourself you can mark it ‘resolved’ and safely ignore it.

↧

Unable to update rules

March 20, 2019, 6:21 am

≫ Next: Live Traffic Export

≪ Previous: Alert – Your DNS records have changed

Replies: 1

I have a number of sites that are reporting the same error, as follows.

The last rules update for the Wordfence Web Application Firewall was unsuccessful. The last successful update check was March 10, 2019 6:33 am, so this site may be missing new rules added since then. You may wait for the next automatic attempt at March 24, 2019 6:33 am or try to Manually Update by clicking the “Manually Refresh Rules” button below the Rules list.

Trying the manual update:

No rules were updated. Please verify you have permissions to write to the /wp-content/wflogs directory.

I do. See https://i.imgur.com/snqKQd4.png

↧

Live Traffic Export

March 20, 2019, 10:10 am

≫ Next: Scan Aborted to Time Limit

≪ Previous: Unable to update rules

Replies: 0

is there any way to export live traffic? or are we only allowed to see it on the webpage? is there any other live traffic plugin anyone can recommend to me if we can’t export to see site traffic?

↧

Scan Aborted to Time Limit

March 20, 2019, 11:24 am

≫ Next: cURL error 6: Could not resolve host: noc1.wordfence.com intext

≪ Previous: Live Traffic Export

Replies: 0

Hi, I have been using the free version of Wordfence for years. I have only one that is starting to warrant the full version, but coincidentally that is the one that is not functioning. I noticed I was getting email notifications that it would not complete the scans. Then I got a notice from my host that we have exceeded the size for our MySQL storage or something. I found the cuprit, which was the wp_wfhoover table, and now it seems to be other WF tables. I managed to handle the Hoover table, but I still cannot get the scans to run normally. I have been reading your forum, applying those directions. I have went through the steps in your instructions and settings and it still will not run normally. I even deleted and re-installed the plug-in, still not working. What am I missing?

↧

cURL error 6: Could not resolve host: noc1.wordfence.com intext

March 20, 2019, 1:23 pm

≫ Next: Wordfence e All In One WP Security

≪ Previous: Scan Aborted to Time Limit

Replies: 0

Could not start the scan in Premium and updated version

↧

Wordfence e All In One WP Security

March 20, 2019, 3:25 pm

≫ Next: There is not anyone at subscriber level?

≪ Previous: cURL error 6: Could not resolve host: noc1.wordfence.com intext

Replies: 0

Hello guys,

Does the Wordfence plugin have the same function as the All In One WP Security plugin?

My site is in multisite network. So should the Wordfence plugin be activated on the network or separately on each site (main site and sub sites)?

Thank you,
Rodrigo

This topic was modified 2 minutes ago by Rodrigo.

↧

There is not anyone at subscriber level?

March 21, 2019, 12:42 am

≫ Next: WordPress database error Got a packet bigger than ‘max_allowed_packet’ bytes for

≪ Previous: Wordfence e All In One WP Security

Replies: 0

Hello,

WF is telling me this: User “blabla@ladidah.com” with ‘subscriber’ access has a very easy password.
Type: Insecure Password

Now, there is an Admin with name.

Why is it telling me a subscriber?

Thank you for your time.

↧

WordPress database error Got a packet bigger than ‘max_allowed_packet’ bytes for

March 21, 2019, 12:56 am

≫ Next: Fatal error Sodium

≪ Previous: There is not anyone at subscriber level?

Replies: 0

Hi I am having a problem with my website we keep getting this error file that is approx 1gig each day
The following is just a sample of the log file
Phperrorlogs.txt
sorry if I have put this in the wrong place, I am having trouble working out how to find a forum to post in.

[13-Mar-2019 08:05:53 UTC] WordPress database error Got a packet bigger than ‘max_allowed_packet’ bytes for query DELETE FROM as_wp_options WHERE option_name IN (‘wpsessionexpiresd86707fb1df932def631873b23ad4b4d’,’_wp_session_07fb1df932def631873b23ad4b4d’,’wpsessionexpires89450916babeafb4ea1d57676bbfb842′,’_wp_session_0916babeafb4ea1d57676bbfb842′,’wpsessionexpiresb2e8ae3198dd88ce172553541c9e7325′,’_wp_session_ae3198dd88ce172553541c9e7325′,’wpsessionexpires5de8bba9ccea1d6f20e04f982f2f4821′,’_wp_session_bba9ccea1d6f20e04f982f2f4821′,’wpsessionexpires2b6126924033b0521ab5c556f45396c8′,’_wp_session_26924033b0521ab5c556f45396c8′,’wpsessionexpiresc28724d4ea4edf38522e2ccef67d3f5c’,’_wp_session_24d4ea4edf38522e2ccef67d3f5c’,’wpsessionexpiresa6ac66bdc4cb1665ee9fcd015d24eb77′,’_wp_sessio

Are you able to let me know why it is being created and how to stop it as its keeps filling up our website and we have to delete it each day.
Thanks
Rowena

↧

Fatal error Sodium

March 21, 2019, 1:32 am

≫ Next: WP Update or Hackers Attack?

≪ Previous: WordPress database error Got a packet bigger than ‘max_allowed_packet’ bytes for

Replies: 0

Hi there,

I have this error into log file. What does it mean ? how to solve this ?

PHP Fatal error: Uncaught SodiumException: secret key size should be SODIUM_CRYPTO_SIGN_SECRETKEYBYTES bytes in …/wp-content/plugins/wordfence/vendor/paragonie/sodium_compat/src/Compat.php:2203

Thanks

↧

WP Update or Hackers Attack?

March 21, 2019, 4:59 am

≫ Next: Wordfence says rules not updated though rules.php is updated

≪ Previous: Fatal error Sodium

Replies: 1

Hello,

I received a wordfence notification that there were attacks and changes in files. With the change files were only after the wordpress upgrade. Should I worry?

Link to changed files:
https://i.ibb.co/y6wwXQ1/ok.jpg

Greetings,
Adam

↧

Wordfence says rules not updated though rules.php is updated

March 21, 2019, 6:26 am

≫ Next: Wordfence blocked uploads via Gravity form

≪ Previous: WP Update or Hackers Attack?

Replies: 0

I have a customer who gets admin notice about rules update not working “The last successful update check was 2019-03-09 09:31”. Manual refresh returns “No rules were updated. Please verify you have permissions to write to the /wp-content/wflogs directory.”

Folder permissions are ok and stat on rules.php after the manual rules update shows current timestamp (Modify: 2019-03-21 14:14:25.898631630 +0100).

The ajax request that runs on manual rule update (wordfence_updateWAFRules) returns rulesLastUpdated 1550166479 (and config-transient.php contains “rulesLastUpdated”;i:1550166479).

Stat on config-transient.php is older but not as old as 1550166479 (Modify: 2019-03-21 12:49:00.283322072 +0100).

Everything is green on Wordfence diagnostics. wp cli “cron test” says WordPress cron is ok.

Deactivating and reactivating the plugin does not make a difference. I suppose we could try deleting wflogs but I wanted to check in with you guys first. Any idea what could be going on here?

↧

Wordfence blocked uploads via Gravity form

March 21, 2019, 8:34 am

≫ Next: firewall rules problem: permissions on wflog

≪ Previous: Wordfence says rules not updated though rules.php is updated

Replies: 0

Hello, please help if you can. I installed wordfence and made all configurations. But know we have a problem that our custemers cannot upload the data, because wordfence blocked it. Quite strange.

↧

firewall rules problem: permissions on wflog

March 21, 2019, 9:56 am

≫ Next: Not Receiving Email Notofikasi

≪ Previous: Wordfence blocked uploads via Gravity form

Replies: 0

Hi. I have a problem which started after latest update (I now have 7.2.3). I have a dashboard notice saying my “Firewall rules update was unsuccessful. The last successful update check was March 8, 2019.” I tried to manually update and got a ‘failed’ notice asking me to verify permissions to wflog. I checked and permissions are 755. What should it be?

I had this notice on another site but manual update worked just fine.

(I checked and saw similar questions but not exactly like this and with this version)

↧

Not Receiving Email Notofikasi

March 21, 2019, 4:13 pm

≫ Next: When are modified core files a concern?

≪ Previous: firewall rules problem: permissions on wflog

Replies: 0

Hello,
I use the free version of the wordfence plugin. I found the problem. I did not receive an email notification from wordfence when signing into the website. But his settings are correct. With the same settings on my other website, no problem.

Pengaturan yang saya lakukan seperti ini:
https://ibb.co/L8PvhZF
https://ibb.co/LN20gcF
https://ibb.co/PQRxY0z

Can you help and find this problem?
tengs..

↧

When are modified core files a concern?

March 21, 2019, 5:24 pm

≫ Next: wp-wcd.php and more malware

≪ Previous: Not Receiving Email Notofikasi

Replies: 0

Every once in awhile, I’ll get email alerts from Wordfence that one or more core WordPress files have been modified. Often times, I’ll get the same alerts for multiple different sites at the same time concerning the same files.

This week I keep getting alerts as follows:
* WordPress core file modified: wp-includes/comment.php
* WordPress core file modified: wp-includes/formatting.php

When I look at the changes to the files, it doesn’t SEEM like anything terrible, but at the same time, I’m not a PHP guru, so it leaves some room for concern.

I guess I would just like to understand more about these alerts. If I am the only one with access to the files and I didn’t make these changes (nor did my host), what could cause these alerts apart from a hacker? Can updates to WordPress itself cause this sort of alert but not be a cause for concern?

↧

wp-wcd.php and more malware

March 22, 2019, 2:55 am

≫ Next: unable to create the wordfence-waf.php file in the root

≪ Previous: When are modified core files a concern?

Replies: 1

Hi,

My team has problem with multiple malicious type of virus, first of theme VCD which came inside wp-includes/ and inject code in theme/functions.php . Second virus change permissions and third has some chinese signs inside plugins. Also on few sites we had installed Wordfence free version and setuped properly, but mysteriously wordfence dissapear from server!

Did you have this expirience before?

Best regards.

↧

unable to create the wordfence-waf.php file in the root

March 22, 2019, 5:00 am

≫ Next: Scan failed

≪ Previous: wp-wcd.php and more malware

Replies: 0

If I install the Firewall I get this fail:

We were unable to create the wordfence-waf.php file in the root of the WordPress installation. It’s possible WordPress cannot write to the wordfence-waf.php file because of file permissions. Please verify the permissions are correct and retry the installation.

How can I fixed it?

↧

Scan failed

March 22, 2019, 5:04 am

≫ Next: Undefined index: SCRIPT_FILENAME

≪ Previous: unable to create the wordfence-waf.php file in the root

Replies: 0

Hi. I have a problem with one of my pages. Scan failed. All other pages normally scan, only one is not. What I tried and nothing changes:
– change the theme
– disable all plugins
– fresh upload wp-admin and wp-include
– set “Maximum execution time for each scan stage” to 15 (and even 200, I have server limit 300)
– “Scan images, binary, and other files as if they were executable”
– “Use low resource scanning”
– “Start all scans remotely”
– Diagnostics – everything OK

Steps the scanner does:
– contacting Wordfence to initiate scan
– found 6 plugins
– found 1 themes
– 3149 files indexed
– analyzed 100, 200… 900 files containing 12,45 MB of data so far

And then thinking, thinking, but nothing happend. After some time “scan failed”. Sometimes there is 900 files analyzed, sometimes 1000. In debugging mode, there is no dependency that it stop at a particular file, sometimes it is a plugin, sometimes something in wp-admin, completely variably.

This topic was modified 37 minutes ago by vievioor.
This topic was modified 36 minutes ago by vievioor.
This topic was modified 36 minutes ago by vievioor.

↧