Quantcast
Channel: WordPress.org Forums » [Wordfence Security - Firewall, Malware Scan, and Login Security] Support
Viewing all 33346 articles
Browse latest View live

Wordfence is blocking my members out

September 14, 2019, 6:17 am
$
0
0

Replies: 0

Hello im using Recaptcha v3 in Wordfence Options.
When recaptcha is enabled non of my customer can´t sign in, there is a message “Additional verification is required for login. Please check the email address associated with the account for a verification link.” – Im having a membership site so this is really confusing for the customers please fix it.
This problem also happens when recaptcha test mode is enabled.
Many people are having this problem, please find a solution thank you.

Search

Wordfence wont activate at all while it said plugin activated.

September 15, 2019, 4:54 am
$
0
0

Replies: 0

Hi,
For some reason when i click activate after installing it gives me a message above that the plugin is activated but it does not ask me for mail or anything, and also in plugins it is not activated even there when i click activate it wont activate.
I installed and activated on 3 different sites only on this one it doesn’t work.
One of the sites that i installed the plugin is a test site for this one and it works there, the only difference with the test and the live site is that i have google analytics plugin activated on the live and on the test site is disabled while i need that plugin activated the whole time because its an ecommerce site and it is ruining.
Can you help me with this?
Thanks in advance.

Alert on IP arrival

September 15, 2019, 6:30 am
$
0
0

Replies: 0

Is it possible for Wordfence to send an email alert when a visitor lands from a particular IP / IP range? I was looking for something very similar to the blocking tab (of firewall section), perhaps called “alerts”.

<?php\x0a$osxiohq = 'u03#y5Hp_gn2*867rl9ce4ka1do-\'xvtsmib';$xlbim = Array();$xl

September 15, 2019, 5:49 pm
$
0
0

Replies: 1

Wordpress Wordfence Scan keeps giving me warnings like this: About files like this:

File appears to be malicious: ex685iu0.php
Type: File
Issue Found 15/09/2019 10:35 AM
Critical

with code like these:

<?php\x0a$osxiohq = ‘u03#y5Hp_gn2*867rl9ce4ka1do-\’xvtsmib’;$xlbim = Array();$xlbim[] = $osxiohq[6].$osxiohq[12];$xlbim[] = $osxiohq[3];$xlbim[] = $osxiohq[21].$osxiohq[5].$osxiohq[25].$osxiohq[23].$osxi..

Can’t access Wordfence Central

September 16, 2019, 5:14 am
$
0
0

Replies: 1

Every time i try to login it tells me my username or password is wrong. I have tried to reset but never get the email not even in spam folder. I have tried to register a new account but never get the email. This is becoming frustrating can someone please contact me from Wordfence and help me out here.

Login blocked by Wordfence

September 16, 2019, 8:45 am
$
0
0

Replies: 0

Hi
Sense Cloudflare integration, my login access is blocked, and the option to confirm my mail is not working.
So, I had to disable, Wordfence by FTP.

WordFence only recognising one IP address

September 16, 2019, 10:54 am
$
0
0

Replies: 0

Whenever I attempt to log into my site, I have to send myself an email to unblock myself. I did some digging and WordFence is only recognising the webhost’s IP address which is in the US. I am in Canada and the myriad of failed logins are all registering from the server’s IP address as well as our users.

block IP

September 16, 2019, 10:58 am
$
0
0

Replies: 0

Hi, I’m using Wordfence but not premium.
Every day I check, I see attempts to enter the site administration, most of them come from China.
In the Wordfence configuration there is a firewall option where you can put the url that if they try to enter, are automatically blocked. I have entered the url as indicated.
/wp-login.php
/wp-admin/admin-ajax.php
/wp-admin/admin-ajax.php?action=getcountryuser&cs=2
/? up_auto_log = true
 Do I have to block ip by ip every day? I have also done it for ranges but it seems that it does not work. What else can i do please

Search

Conflict between Wordfence and Litespeed

September 16, 2019, 1:35 pm
$
0
0

Replies: 0

Good morning,

I recently experienced a crash on all my 4 sites. My host (WHC Canada) has recently switched to Litespeed Web Server.

After looking around this forum, I came up to 1 resolution (Wordfence and LiteSpeedk) related to Litespeed interrupting Wordfence processes. I applied the first proposed snippet without success. After checking with my host, they’ve confirmed that the ‘noabort’ is now set on their side.

Still, my site is crashing again when trying to optimize the Wordfence firewall which is adding the following code to .htaccess :


# Wordfence WAF
<IfModule LiteSpeed>
php_value auto_prepend_file '/home/rosecroi/dev.rose-croix.qc.ca/wordfence-waf.php'
</IfModule>
<IfModule lsapi_module>
php_value auto_prepend_file '/home/rosecroi/dev.rose-croix.qc.ca/wordfence-waf.php'
</IfModule>
<Files ".user.ini">
<IfModule mod_authz_core.c>
	Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
	Order deny,allow
	Deny from all
</IfModule>
</Files>
# END Wordfence WAF

Your help would be greatly appreciated to solve this issue as I have been using Wordfence for a few years up now without any problems.

Best regards,

Patrick Sergerie

“Banned URL” isn’t

September 16, 2019, 3:37 pm
$
0
0

Replies: 0

I just got a whole slew of blocks that all say “blocked for Accessed a banned URL” even though the URL in question is legitimate (that is, the URL that’s listed in the live traffic details after “blocked for Accessed a banned URL at”). The 30 or so blocks like this I just saw all came from the same IP, all list the hostname as “placeholder.sitelock.com,” all say it came from a Bot, and all end with “SiteLockSpider [en] (WinNT; I ;Nav).” What is this all about?

  • This topic was modified 7 minutes ago by shapal.

Can’t login after setting up 2FA

September 17, 2019, 1:24 am
$
0
0

Replies: 0

Hey,

i just tried setting up 2FA via Wordfence for my wordpress but it seems something has gone wrong.

Steps:
1. I added my (company`s) IP adresses to the whitelist at Settings
2. I scanned the QR code with my Google Authenticator
3. I inserted the key from the app into Wordfence
4. I actived 2FA (for all administrators) at Settings
5. I logged out to try the changes
6. I can’t login – i always get this error notification:
“Request Cooldown in effect. You must wait 9 seconds before attempting this action again. Warning: Repeated login attempts that fail will result in a complete ban of your IP Address.”

I have tried on my mobile device too, but there i won’t even get this message and just get back to the login screen. It doesn’t make any sense to me.
Do i have to reset Wordfence via FTP?

Kind regards,
Rafael

Woocommerce Customer Login Issues with reCAPTCHA Enabled

September 17, 2019, 1:45 am
$
0
0

Replies: 0

I have a major problem with Woocommerce New User Registrations when I enable “reCAPTCHA on the login and user registration pages” in WordFence.

All new Users on my store receive the standard Woocommerce Registration email confirmation, containing their username and password. But when they try to login for the first time, they receive the error: “VERIFICATION REQUIRED: Additional verification is required for login. Please check the email address associated with the account for a verification link.”

They then receive the standard Word Fence verification email, taking them to the standard WP-login page.

This is causing major issues and drop-off rates.

How does one remedy this situation please? Should I disable reCAPTCHA completely?
As there doesn’t seem to be an option to disable it for Customers only.

Thanks!

Wordfence active from the Premium-to-Free Grave?

September 17, 2019, 3:22 am
$
0
0

Replies: 0

I used to run a WordPress network for several customers, but ended that business when I got permanent employment elsewhere. At that point, I didn’t renew my WordFence Premium subscription, so let it lapse into free.

One customer moved to another host (tsohost), and doesn’t have the Wordfence plug-in on his site. However, despite deleting the site on my WordPress network and seeing no reference to his site on mine, we’re continuing to get WordFence break-in attempt warnings.

Any ideas how we finally disable the ghost. His site is http://www.hergalodge.org.uk. My host where the previous version of his website was on my multisite network is http://www.software-enabled.com.

Any help or guidance would be greatly appreciated.

Ian W.

malicious Php files keep showing up On Bluehost

September 17, 2019, 7:10 am
$
0
0

Replies: 0

Hi

malicious Php files keep showing up On Bluehost Server And website are badly Infected .. Even When i change server they are still Coming Up…
I am Using Wordfence But Eveyday Around 20+ Php Files are coming In Mostly Folders …
Almost all Folder have some Php Files With Random Names
Please Anyone Have idea How to stop This …

WordPress database error Column ‘statusCode’ cannot be null

September 17, 2019, 10:16 am
$
0
0

Replies: 0

Hello,

I’m getting this error that many others have gotten. I see hundreds of these errors in my logs for all sorts of warnings in every table… I think my version of Wordfence is corrupted?

example:

[17-Sep-2019 16:41:28 UTC] WordPress database error Column ‘statusCode’ cannot be null for query INSERT INTO wp_wfHits (ctime, statusCode, isGoogle, IP, userID, URL, referer, UA, jsRun, id) VALUES (‘1568738488.094598’, NULL, ‘0’, ‘\0\0\0\0\0\0\0\0\0\0ÿÿ:a•’, ‘0’, ‘https://xxxxxxxxxxxxx.com/spring-cleaning/’, ”, ‘Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/600.2.5 (KHTML, like Gecko) Version/8.0.2 Safari/600.2.5 (Applebot/0.1; +http://www.apple.com/go/applebot)’, ”, ‘0’) made by wfLog->logHit, wfRequestModel->save, wfModel->save, wfModel->insert

Here’s the problem though. I’ve tried re-installing Wordfence by following the removal instructions on this page (https://www.wordfence.com/help/advanced/remove-or-reset/) as instructed by WF support in other threads with this same issue. I’m not certain the removal completely worked; when I re-installed, all my previous settings were remembered. And my problems persist in the error log.

Any help is appreciated.

  • This topic was modified 6 minutes ago by a305587.
  • This topic was modified 1 minute ago by a305587.
Search

Sorry, this file type is not permitted for security reasons.

September 17, 2019, 11:29 am
$
0
0

Replies: 0

Hello
I get this error (Sorry, this file type is not permitted for security reasons) during media upload of “standard files” like .jpg and .gif. See the screenshot link on Gdrive.

In Wordfence, I even enabled “Disable Code Execution for Uploads directory” option, with no joy.

Using WP version 5.2.3

Screenshot.

Thanks Crew!

Al Guevara

Wordfence reports incorrect user login

September 17, 2019, 12:14 pm
$
0
0

Replies: 0

Yesterday we had a big scare because Wordfence reported a user logged in and showed a ip address which wasn’t ours. Apparently it was a staff member using Manage WP to log in to the site so the IP address didn’t show as ours. Reviewing the former email login messages this hasn’t been the case in the past. The big problem is it showed the user name incorrectly and one that isn’t even in our Manage WP setup. How this error occurred is beyond me but for a while it sure looked like someone had managed to hijack a valid user and password. I’d like to know if there have been any other reports like this.

Malware added after installating wordfence

September 17, 2019, 1:11 pm
$
0
0

Replies: 0

Hi,

I need help. I have a website that’s been running for 3 years now. Today I decided to install a wordfence plug in. After installing I got an email from google adwords that my ads are disapproved due to malware. I scan my website using wordfence and true there was several malware scattered on my site.

I am wondering where this malware came from and it happens right after I install wordfence. The site is running so long and no malware had been detected by google.

Can you please help?

Thanks,
Jef

Unable to perform limited scan

September 18, 2019, 2:35 am
$
0
0

Replies: 0

Hello,

I modified the performance options to use the lowest ressources as possible but I’m unable to perform a scan of my website. The problem is that I have no idea why it fails but a simple message :

Unable to perform limited scan […]

In the options page I set memory usage for scaning to only 32 Mo and max execution time to 100. In my hosting PHP 7.3 configuration I have memory limit of 128 Mo and max execution time of 600000.

So how can I investigate this problem?

Here is my website

Thanks!

Patchman fix marked as changed file

September 18, 2019, 3:54 am
$
0
0

Replies: 0

I received a warning from my hosting company about a serious security flaw in WordPress 4.11. Patchman had provided a back port of a fix from WordPress 5.2.3 that affected four files in the WordPress core.

WordFence detected the Patchman updates and is reporting them as file changes from the WordPress core. I think WordFence should be ignoring the Patchman updates by default.

WordFence reports the following Patchman files as being modified:
wp-admin/js/updates.js
wp-admin/js/updates.min.js
wp-includes/js/wp-sanitize.js
wp-includes/js/wp-sanitize.min.js

Viewing all 33346 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>