Replies: 2
Hi
When a user is blocked, a default message from WordFence is displayed to the user, how can we redirect the user to a desired page instead of that default message?
↧
Show blocking message
↧
Protect User.ini in Root DIrectory .hta when other FW Plugin exist
Replies: 0
Hello,
i use WF together with a other FW Plugin, what already generate .htaccess code. I did the WF Setup now, and recognized that the .htaccess code (Apache Webhosting /) is not added to my root htaccess File. I disabled the other FW Plugin, and Disabled WF Firewall / enabled again Protection Mode, but still the user.ini protection is not generated.
1. Can i add the Code just manually in my root htaccess File? Where should the code be, before caching htaccess , or is the position where the code is added equal.
# Wordfence WAF
<Files ".user.ini">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</Files># END Wordfence WAF2. If i have already the following code in my htaccess, can i not just add to the code the user.ini protection to merge?
This is the actual code in my htaccess file:
# Protect
<FilesMatch "^(wp-login\.php|wp-config\.php|php\.ini|php5\.ini|readme\.html|bb-config\.php|debug\.log)">
<IfModule mod_authz_core.c>
Require all denied
Require ip 127.0.0.1
</IfModule>
<IfModule !mod_authz_core.c>
<IfModule mod_access_compat.c>
Order Allow,Deny
Deny from all
Allow from 127.0.0.1
</IfModule>
</IfModule>
</FilesMatch>thx
br
↧
↧
2FA won’t recognize Authenticator codes or recovery codes
Replies: 0
I recently installed the Wordfence plugin on my website. Tonight I activated the Two-Factor Authentication feature in the Login Security section, using the scanned QR code it displayed on the plugin’s Login Security page on my site. It added a Wordfence entry on my Google Authenticator iPhone app.
I downloaded my recovery codes, and then I logged out of my site to test the new 2FA system.
I entered my login and password correctly, and then it asked me for the 2FA code. I opened the Google Authenticator app, made sure I was looking at the Wordfence authentication code, and entered it as shown.
Every time, it produces the error “VALIDATION FAILED: The 2FA code could not be validated. Please try logging in again.”
After three failed attempts at using Authenticator code, I tried my first recovery code. I got the same error: “VALIDATION FAILED: The 2FA code could not be validated. Please try logging in again.”
I am now effectively locked out of my site, and have no way back in.
I followed the steps as instructed; I entered the codes as directed. Why am I locked out of my site?
↧
How to block bot traffic from menacing sites
Replies: 0
I am getting bot traffic once a month from sites – bottraffic015.xyz , trafficcfit.club , trafficcity.club
I want to block them but couldn’t find the IP address as there are several. How to block the traffic from these menacing sites?
↧
Require 2FA for admins on multisite
Replies: 0
We run a multi-multisite and would like to use Wordfence Login Security to require 2FA for all admins AND superadmins on our networks.
We have enabled 2FA for administrators and have ticked the box to “Require 2FA for all administrators”. The note beside this option says “On multisite, this option applies only to super admins.” Unfortunately, this means only a very few users are required to use 2FA and lots of administrators across different sites are able to access our networks without 2FA.
Is there a plan (or an alternative way) to extend the “Require 2FA” functionality beyond superadmins on multisite?
↧
↧
Your site could not complete a loopback request
Replies: 0
Your site could not complete a loopback request
Loopback requests are used to run scheduled events and are also used by the built-in editors for themes and plugins to verify code stability.
The loopback request returned an unexpected HTTP status code, 403, it was not possible to determine if this will prevent features from working as expected.
I got this error in Wordfence. I see that it’s an HTTP error when the site is on HTTPS. How can I find where this error is so I can fix it?
↧
Google Maps API doesn’t work
Replies: 0
Hi,
I want to setup Google Maps Gutenberg block from Qubely, but doesn’t work. Support from Qubely said, this is a plugin conflict…
I turned off every installed plugins on my site except Wordfence, but the problem is still there.
I tried Wordfence Learning mode, but it doesn’t work…
Any idea, that Wordfence blocks the Google Maps API call?
Thank you!
Tibor
↧
Login/logouts history not working as expected
Replies: 0
Team,
I am seeing strange behaviour with the wordfence plugin where Login/logouts history (logs which is shows under tools) not working as expected. Whenever I try to login with multiple accounts at the same time we are not seeing the logins are being registered in the plugin. Do we have any fix for this issue or did any face this behaviour already? If yes please let me know
↧
How to block attacker IP address
Replies: 2
Hi all,
Please advise “How to block attacker IP address” ?
Wordfence (version 7.5.3)
-> Tools -> Live Traffic
highlight the attacker
-> (showing)
Activity Detail
[BLOCK] [RUN WHOIS][SEE RECENT TRAFFIC]
Attacker's IP addressThe attacker tried to login but failed.
Thanks in advance
Regards
↧
↧
Email address changed but still shows old email
Replies: 0
I needed to change the WordPress admin email.
I now also need to change the WF email address.
I don’t find anywhere I can change the email address in WF.
I can only change the address where alerts are sent.
https://i.imgur.com/ihzNKjy.jpg
WF still shows the old email address
↧
Login button doesnt work when Wordfence is enabled
Replies: 1
We had to disable wordfence on multiple websites due to this issue. Seems like the last update is triggering this. If we disable wordfence the login button works else it does not.
Have generatepress as the theme on all these websites.
Any help will be greatly appreciated.
↧
Not able to Block IP address
Replies: 0
I blocked few IP addresses (Expiration Rule – Permanent) in wordfence a couple of months back. However, I noticed that these IP addresses (bots) are crawling the site again as per my log files and google analytics report.
These bots are accessing a large number of pages (site.com/category/ pages) from a specific location. Users don’t access these /category/ pages too often, and currently, these pages have become the most visited pages. So, for now, I added these IPs to my .htaccess file to block it.
I suspect there is something wrong. Can you please suggest?
Thanks
↧
IP spoofing not recognized
Replies: 0
I configured the settings to lockout the IP of any login attempt that enters an invalid username. This morning I got 12 lockout alerts in less than 2 minutes. Each alert shows a different IP and country, but I know it’s the same hacker because he uses the same invalid username each time. He tries this every couple of weeks or so.
I am using Cloudflare, so I set the IP detection method to CF-Connecting-IP. But on the diagnostics page it says “Configured but not valid” so apparently it’s not working. Please help, how do I fix this?
↧
↧
Unable to update firewall rules
Replies: 0
Installed WordFence, activated. Received a notification Rule Update Failed, when I try manual update get error: ‘Rule Update Failed’ – Please Verify You Have Permission to write to the /wp-content/wflogs directory.
User context has administrative rights on machine so definitely no problem there.
Tried uninstalling, deleting entirely and reintstalling. Same error. Other sites on the same server are using a mix of premium and free version, do not seem to be any problems.
Troubleshooting steps??
↧
Wordfence False Postive
Replies: 0
I think this is a false positive. I have downloaded the file and scanned that on Virustotal but it was fine. Just Wordfence is detecting that file as malware.
It is wprocket static cache files.
Filename: wp-content/cache/wp-rocket/www.example.com/how-to-defend-against-ddos-attacks/index-https.html
File Type: Not a core, theme, or plugin file from wordpress.org.
Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The matched text in this file is: UDP flood
The issue type is: Backdoor:PHP/flooder.91
Description: A backdoor known as flooder`
↧
Cant Login
Replies: 0
I have LoginPress and Wordfence installed. When I try log in, it doesn’t work. I host with cloudways and they have said the problem is Wordfence Plugin and they keep having to deactivate the plugin for me so I can log in. When they deactivate it for me I can login without an issue. Can anyone help me please? I have the latest version of WordPress installed and plugins are all up to date. This problem seemed to coincide with the new version of core software.
↧
Wordfence warning with caching plugin even after deleting Wordfence
Replies: 1
Hi all, I am testing the plugin WP Super Cache. When I want to try the expert settings I get the warning below. I still get the warning after deactivating Wordfence and even after deleting this plugin. How is this possible and what can I do?
Thank you.
A potentially unsafe operation has been detected in your request to this site
Your access to this service has been limited. (HTTP response code 403)
If you think you have been blocked in error, contact the owner of this site for assistance.
Block Technical Data
Block Reason: A potentially unsafe operation has been detected in your request to this site↧
↧
Error Log file showing corrupt (hacked) data?
Replies: 2
Hi, on two occasions in the last few days the file “error_log” which i believe WordFence is generating has been showing information like this:
[17-May-2021 19:58:22 UTC] WordPress database error Illegal mix of collations (utf8_general_ci,IMPLICIT) and (utf8mb4_unicode_520_ci,COERCIBLE) for operation 'like' for query SELECT SQL_CALC_FOUND_ROWS wp_posts.ID FROM wp_posts WHERE 1=1 AND (((wp_posts.post_title LIKE '%❓ Zantac from $0.29 per pill on 🌕 www.NetDoctor.store 🌕 <- Pharmacy link ❓Buy Zantac 75 Mg Can You Buy Zantac Now/%') OR (wp_posts.post_excerpt LIKE '%❓ Zantac from $0.29 per pill on 🌕 www.NetDoctor.store 🌕 <- Pharmacy link ❓Buy Zantac 75 Mg Can You Buy Zantac Now/%') OR (wp_posts.post_content LIKE '%❓ Zantac from $0.29 per pill on 🌕 www.NetDoctor.store 🌕 <- Pharmacy link ❓Buy Zantac 75 Mg Can You Buy Zantac Now/%'))) AND (wp_posts.post_password = '') AND wp_posts.post_type IN ('post', 'attachment') AND (wp_posts.post_status = 'publish') ORDER BY (CASE WHEN wp_posts.post_title LIKE '%❓ Zantac from $0.29 per pill on 🌕 www.NetDoctor.store 🌕 <- Pharmacy link ❓Buy Zantac 75 Mg Can You Buy Zantac Now/%' THEN 1 WHEN wp_posts.post_title LIKE '%❓ Zantac from $0.29 per pill on 🌕 www.NetDoctor.store 🌕 <- Pharmacy link ❓Buy Zantac 75 Mg Can You Buy Zantac Now/%' THEN 2 WHEN wp_posts.post_excerpt LIKE '%❓ Zantac from $0.29 per pill on 🌕 www.NetDoctor.store 🌕 <- Pharmacy link ❓Buy Zantac 75 Mg Can You Buy Zantac Now/%' THEN 4 WHEN wp_posts.post_content LIKE '%❓ Zantac from $0.29 per pill on 🌕 www.NetDoctor.store 🌕 <- Pharmacy link ❓Buy Zantac 75 Mg Can You Buy Zantac Now/%' THEN 5 ELSE 6 END), wp_posts.post_date DESC LIMIT 0, 20 made by require('wp-blog-header.php'), wp, WP->main, WP->query_posts, WP_Query->query, WP_Query->get_posts
but Wordfence isn’t giving me any alerts about this stuff. Can anyone elaborate about what all this is referring to? Content on my blog that has been hacked or corrupted perhaps?
↧
Kan inte uppdatera
Replies: 0
Hej!
Kan inte färdigställa Wordfence (har Version 7.5.3). Får följande meddelande:
Installation Successful
The changes have not yet taken effect. If you are using LiteSpeed or IIS as your web server or CGI/FastCGI interface, you may need to wait a few minutes for the changes to take effect since the configuration files are sometimes cached. You also may need to select a different server configuration in order to complete this step, but wait for a few minutes before trying. You can try refreshing this page
Men uppmaningen “To make your site as secure as possible, take a moment to optimize the Wordfence Web Application Firewall:” finns kvar. Vad kan felet vara?
Hälsningar
Lena
↧
Locked out of site, 2fA codes not working
Replies: 2
I’ve been using the Wordfence plugin a while, love it…but I’m having issues today, as none of my remaining 2FA codes are working. I’m now locked out of my site. I chose the Unlock option, got the email with options (including a link to “Click here to unlock all IP addresses and disable the Wordfence Firewall and Wordfence login security for all users”). Unfortunately the links just take me to my log in, and it keeps asking me for my 2FA code, not disabling Wordfence. I’m in a hellish loop.
Can you help me get access back to my website? There should be a failsafe that works.
Thanks!
↧