sitemap couldn’t fetch please help

January 22, 2022, 6:17 am

≫ Next: Wordfence alert: Critical Problems

≪ Previous: Email notification from Wordfence high spam score

$

0

0

Replies: 0

Hi
i’m using yoast seo to creat my sitemaps and wordfence as a security plugin, everything was running good and nice until about 2 days ago i noticed google search console been giving me this msg that it couldnt fetch my sitemap due to a General Http Error – example Error 403

check this picture here
https://i.ibb.co/ZHSy89k/Sans-titre-2.jpg

first it started with only post-sitemap.xml and then the error moved to lessons-sitemap.xml

check this picture too
https://i.ibb.co/9g4Pkp3/Sans-titre-4.jpg

only 2 tabs have errors, the rest are successfully read which is weird
i dont remember messing with anything so i dont know where did this come from

my sitemap url :
https://www.sftcpro.com/sitemap_index.xml

i use cloudflare by the way too

i was wondering maybe wordfence blocking googlebots, if so how can i make sure about that or maybe fix this issue if its coming from wordfence

any help guys plz ? thanks

---

Wordfence alert: Critical Problems

January 23, 2022, 8:12 am

≫ Next: Worfence 2FA does not work

≪ Previous: sitemap couldn’t fetch please help

$

0

0

Replies: 0

I have an email dated today from Wordfence and confirmation in the Wordfence dashboard that there are critical problems:

File appears to be malicious or unsafe: php.ini
File appears to be malicious or unsafe: wp-content/php.ini
File appears to be malicious or unsafe: wp-content/plugins/php.ini
File appears to be malicious or unsafe: wp-content/themes/php.ini

Sucuri site scan says nothing malicious found and the host IONOS 1&1 hasn’t been in touch.

I have just changed user passwords on the site.

I have two option in Wordfence: Delete all deletable files or Repair all repairable files, which I haven’t done because I don’t know if that’s safe. I have just backed up the site.

Any advice greatly appreciated.

• This topic was modified 16 minutes ago by Andrzej.

Worfence 2FA does not work

January 24, 2022, 12:45 am

≫ Next: Complex Attack is not Detecting

≪ Previous: Wordfence alert: Critical Problems

$

0

0

Replies: 0

Hi,
I am premium user but cannot login to the website due to 2FA issues. It says the code is not correct but I am sure it is…
I have ran the diagnostics already and send ot via mail…
The only error I see is in connectivity: wp_remote_post() test back to this server failed! Response was: cURL error 60: SSL certificate problem: certificate has expired

What to do?

Kr,
Bart

Complex Attack is not Detecting

January 24, 2022, 2:03 am

≫ Next: Wordfence Alert 404

≪ Previous: Worfence 2FA does not work

$

0

0

Replies: 0

Wordfence Plugin is not detecting complex attacks. If someone opens https://example.com/wp-content/wp-old-index.php?action=login&pass=-1&submit= then Wordfence does not block this activity and shows “try to access a non-existent page” in Wordfence “Live Traffic”. But wordfence is used to block such activities.

Wordfence Alert 404

January 24, 2022, 3:04 am

≫ Next: Blocked IP is still accessing site?

≪ Previous: Complex Attack is not Detecting

$

0

0

Replies: 0

I have a mega problem with this plugin (Wordfence). It just blocked the page and we can’t reset our password because the link from Wordfence Alert directs us to the 404 page. What’s in this situation?

Blocked IP is still accessing site?

January 24, 2022, 5:28 am

≫ Next: Rate Limiting a User with Malware

≪ Previous: Wordfence Alert 404

$

0

0

Replies: 0

I blocked an IP that has been attempting to login to the site for over 2 hours – god knows why wordfence hadn’t already blocked the IP after over 30 login attempts??? Considering my settings were set to “block after 10 failed login attempts”

Anyway, I blocked the IP at 13:02, when I saw the newest login attempts, however since then they have attempted to log in 3 more times so far – how is this possible when the IP is blocked? it’s the same IP every time.

This is POOR security and clearly doesn’t work.

See details of 3 login attempts after IP was blocked here.
See login attempts after blocked IP here.
See the number of login attempts here.
See my login attempt security settings here.

• This topic was modified 1 hour, 5 minutes ago by sierrasixmedia.

Rate Limiting a User with Malware

January 24, 2022, 6:34 am

≫ Next: Can´t get the Firewall Optimized.

≪ Previous: Blocked IP is still accessing site?

$

0

0

Replies: 0

I have a multisite with a few thousand users. One user has some kind of scanner or malware on her Android mobile device. Her IP address hit my server almost 500 times in a few minutes, and the server access log shows the requests were all accurate to the post types and IDs that she would access, meaning something on her phone was rapidly pinging her browser history. I suspect a data miner of some kind.

Anyway I’m a paid subscriber to Wordfence and I have the rate limiting set restrictively low – 120 hits per minute and then throttle. But clearly from my nginx log there is no throttling taking place. Am I missing something?

This multisite is only a service for paid subscribers. I do not even want crawlers on it, inviting trouble. I’d be happier if the public had no idea it existed! So I’m not worried about false positives except where it could affect logged in humans.

Can´t get the Firewall Optimized.

January 24, 2022, 8:54 am

≫ Next: Can I use wordfence to replace wpdiscuz recaptchav2

≪ Previous: Rate Limiting a User with Malware

$

0

0

Replies: 0

Tried reading here, but cant´t get it to work.

https://www.wordfence.com/help/firewall/optimizing-the-firewall/?utm_source=plugin&utm_medium=pluginUI&utm_campaign=docsIcon#hide-userini-nginx

From the beginning I just selected the recommended choice based on you testing. Saves everything with no error-messages. Tried several times. Still looks lite the Firewall is not optimized.

Did send the diagnostics to your mail. My username here is andreaswalkendorff

---

Can I use wordfence to replace wpdiscuz recaptchav2

January 24, 2022, 11:01 am

≫ Next: Wordfence Blocked the Server IP Address

≪ Previous: Can´t get the Firewall Optimized.

$

0

0

Replies: 0

hi, new to wordpress

I have the wordfence plugin installed, recpatchv3 configured.

I am confused as to whether this protects the whole site and all plugins, for example can I disable recaptcha v2 in wpDiscuz because wordfence will protect my logins / account creation.

I realize this is an issue where i am caught between two plugin vendors 🙂

Wordfence Blocked the Server IP Address

January 24, 2022, 2:22 pm

≫ Next: wfls_twofactor_required

≪ Previous: Can I use wordfence to replace wpdiscuz recaptchav2

$

0

0

Replies: 0

I have already got the site back up and running, but need to make sure this does not happen again.

wfls_twofactor_required

January 24, 2022, 11:59 pm

≫ Next: Data Processing Agreement

≪ Previous: Wordfence Blocked the Server IP Address

$

0

0

Replies: 0

Hello everyone,

I’ve recently changed to LiteSpeed and added the rule to .htaccess as well as allowed the IP’s of WF to update. All is working fine except to login now I have to hide Wordfence plugin via hosting, then put it back.

Continues to ask for 2FA, does not display the field to enter it.

Perhaps another code fix I’m missing?

Just started with most recent update within past 3 days or so.

Thank you!
Scott

Data Processing Agreement

January 25, 2022, 12:14 am

≫ Next: Server errors 5xx?

≪ Previous: wfls_twofactor_required

$

0

0

Replies: 0

Is there no Data Processing Agreement for European users any more? In November 2021 there has still been a link on the Wordfence website, but now it seems to be gone.

Server errors 5xx?

January 25, 2022, 3:16 am

≫ Next: Unable to Scan – (Starting cron via proxy at URL https://noc1.wordfence.com)

≪ Previous: Data Processing Agreement

$

0

0

Replies: 0

Google’s telling me my site has 9 affected pages with a 5xx error. The pages are listed and they are all Wordfence links similar to this: https://mysite.com/?wordfence_lh=1&hid=B3ADC59BA325BB7461147C4CB35CC6D5

Is this something I can fix within Wordfence? If not, can someone point me in the right direction?

Unable to Scan – (Starting cron via proxy at URL https://noc1.wordfence.com)

January 25, 2022, 8:29 am

≫ Next: Wordfence blocked my ip

≪ Previous: Server errors 5xx?

$

0

0

Replies: 0

Hi, i’ve tried for 3 hours to get the scan to complete today.

I tried all the recommended steps in the link that comes up when it fails:
https://www.wordfence.com/help/scan/troubleshooting/?utm_source=plugin&utm_medium=pluginUI&utm_campaign=docsIcon#if-your-scans-arent-starting

I’ve enabled Debug and I see:

[Jan 25 16:23:12] Entering start scan routine
[Jan 25 16:23:12] Got value from wf config maxExecutionTime: 20
[Jan 25 16:23:12] getMaxExecutionTime() returning config value: 20
[Jan 25 16:23:12] Starting cron via proxy at URL https://noc1.wordfence.com/scanp/mywebsite.com/wp-admin/admin-ajax.php?action=wordfence_doScan&isFork=0&scanMode=standard&cronKey=e962adf8ed8311e9b947b4efce467f9d&k=142637db828c7d56e370f66503db0e842db41d68103eebb08605d3b0f8380dbd&ssl=1&signature=e915fc07cdb6eb94fc212b5fc6ff8961b56406b947b43bc949dde95086f5156d
[Jan 25 16:23:13] Scan process ended after forking.

There is nothing in the firewall log at Cloudflare and nothing in the PHP logs.

I’d really appreciate some help. Many thanks.

Wordfence blocked my ip

January 25, 2022, 9:39 am

≫ Next: Trojan.Script is not detected by wordfence

≪ Previous: Unable to Scan – (Starting cron via proxy at URL https://noc1.wordfence.com)

$

0

0

Replies: 1

Please let me know why my ip is blocked while I signed in to wordpress in one attempt and also blocked ips are not showing in firewall option. Please unblock my ip.

---

Trojan.Script is not detected by wordfence

January 26, 2022, 4:53 am

≫ Next: Database error wfBlocks7

≪ Previous: Wordfence blocked my ip

$

0

0

Replies: 1

Hello,

Recently Bitdefender Antivirus blocked this:

/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.5.1
Threat name: Trojan.Script.GenericKDZ.8348

For some reason, wordfence did not find anything and everything seems ok. Better whenever I try to log in to the page I get this message above.

Do you know why this happens?

Best Regards

Database error wfBlocks7

January 26, 2022, 6:14 am

≫ Next: How To Contact Premium Support

≪ Previous: Trojan.Script is not detected by wordfence

$

0

0

Replies: 0

See on other websites, not sure how it was resolved. Now only on one website.
The table exists. Its happening at all times of the day.
I cannot find any reliable solution from other posts.
Is there a known cause for this, and a way to work out whats triggering it? Then a way to resolve it?

[26-Jan-2022 00:12:10 UTC] WordPress database error Commands out of sync; you can't run this command now for query SELECT *, CASE 
WHEN <code>type</code> = 3 THEN 0
WHEN <code>type</code> = 4 THEN 1
WHEN <code>type</code> = 7 THEN 2
WHEN <code>type</code> = 6 THEN 3
WHEN <code>type</code> = 5 THEN 4
WHEN <code>type</code> = 9 THEN 5
WHEN <code>type</code> = 8 THEN 6
WHEN <code>type</code> = 2 THEN 7
WHEN <code>type</code> = 1 THEN 8
ELSE 9999
END AS <code>typeSort</code>, CASE 
WHEN <code>type</code> = 3 THEN <code>parameters</code>
WHEN <code>type</code> = 4 THEN <code>parameters</code>
WHEN <code>type</code> = 1 THEN <code>IP</code>
WHEN <code>type</code> = 9 THEN <code>IP</code>
WHEN <code>type</code> = 5 THEN <code>IP</code>
WHEN <code>type</code> = 6 THEN <code>IP</code>
WHEN <code>type</code> = 7 THEN <code>IP</code>
WHEN <code>type</code> = 2 THEN <code>IP</code>
WHEN <code>type</code> = 8 THEN <code>IP</code>
ELSE 9999
END AS <code>detailSort</code>
 FROM <code>jwl_wfBlocks7</code> WHERE <code>type</code> IN (1, 8, 9, 2, 5, 6) AND (<code>expiration</code> = 0 OR <code>expiration</code> > UNIX_TIMESTAMP()) ORDER BY <code>typeSort</code> ASC, <code>id</code> DESC made by wfWAFIPBlocksController::synchronizeConfigSettings, wfBlock::ipBlocks, wfBlock::allBlocks

How To Contact Premium Support

January 26, 2022, 9:46 am

≫ Next: How to mute WP update alerts via Wordfence Central?

≪ Previous: Database error wfBlocks7

$

0

0

Replies: 2

Hello,

I am a premium user and need to contact support. I can’t seem to find a link on the site that does that. It keeps looping me back to videos and documentation.

Please advise.

Thank you.

How to mute WP update alerts via Wordfence Central?

January 26, 2022, 11:51 am

≫ Next: Can’t log in and password link not allowing a reset

≪ Previous: How To Contact Premium Support

$

0

0

Replies: 0

Hi!

At the moment I’ve got 232 websites linked to Wordfence Central, but I’m getting crazy of all the alerts when WordPress has an update available. For minor updates it’s not a big issue, because they are installed within a few hours, but with major updates like 5.9 it’s good to wait a bit before updating all sites. In the meantime they send multiple alerts per day per site, so my Slack monitoring channel is beeping the whole day. I can disable alerts, but then I also miss real High Severity Problems.

Is it an idea to lower the severity of a major WP update? At least for a week or so? After all it’s not severe, because these releases should not contain security issues. It becomes a more pressing issue after a certain time, for example after the next major release.

Thanks Jos

Can’t log in and password link not allowing a reset

January 26, 2022, 1:49 pm

≫ Next: Strange WF Output in source code after WP 5.9 upgrade

≪ Previous: How to mute WP update alerts via Wordfence Central?

$

0

0

Replies: 0

Yesterday I was given control of my organizations site because we had a huge change in leadership. I used the former person’s admin account and password to get in, changed the email to my own as well as listed my personal wordpress account as an alt so I didn’t always have to use the admin account.

For whatever reason, neither are allowing a login attempt at all. It didn’t accept the password that I saved in Google yesterday. I figured maybe I forgot the password already but my personal username and password for wordpress.com AND wordpress.org work fine on every other site but that one. I requested a password change anyway and all it says is passwords don’t match when there was literally only one place to put the new password so yes things can’t match because there was only one place. Then I was locked out by Wordfence. I am quite upset. The only other thing I did to it when I took it over yesterday was take it out of maintenance mode and update a few broken links and remove the long gone usernames of people who retired from the organization.

Right now I do not have access to the host which is something I need to deal with too.