Hi, The Java is now enabled, but there is no change and no console starts when viewing the page. I am using FireFox 32.0.3, and have Java v7 Update71.
I may not have been completely clear before, the Tab "IP's that are blocked from accessing the site" displays the Java Wait icon for a few seconds, then say "No IP addresses have been blocked yet. If you manually block an IP address or if Wordfence automatically blocks one, it will appear here.", however when I attempt to manually add an IP it says "Wordfence is working" down the bottom, then this goes away and nothing is added to the "IP's that are blocked from accessing the site" which is where it should be added. Even after refreshing the page there is still the "No IP addresses have been blocked yet.." message.
There is no Java Console started after enabling the setting as you mentioned, so I suspect this just means there are no errors, if I start the console by viewing a different page like the verify Java page, it does not change when viewing this Wordfence page, or attempting to add an IP.
↧
tah1174 on "[Plugin: Wordfence Security] Wordfence, Block IP Address not working"
↧
GreywolfComputer on "[Plugin: Wordfence Security] Live Activity Not Updating"
The scans work, just not the live activity view. I disabled the plugin, deleted it, then FTP'd the files and activated it again. Will see what happens.
↧
↧
swedeman on "[Plugin: Wordfence Security] Whitelisted IPs and Array entries?"
Uninstall with table delete didn't have any effect.
↧
crystalworlds on "[Plugin: Wordfence Security] Wordfence firewall prevent me from using Aweber blog broadcast"
Hi Tim
I found the problem it was in the firewall settings.
I changed then all back to unlimited and throtlle.
What was happening, was, when I write a post and publish it, aweber good not communicate with my feed. Therefore, it could not send out my blog post to my email database subscribers.
On the Facebook side. When someone clicked on the share button it would not load the picture and information into the popup box to be shared on Facebook, again this I think had something to do with the communication to my feed.
Is there any way I can set the firewall setting to minutes and block and not have this issue.
Paul
↧
crystalworlds on "[Plugin: Wordfence Security] Wordfence firewall prevent me from using Aweber blog broadcast"
Here is a picture of my firewall settings.
See this link http://www.the-secret-of-manifestation.org/images/Capture5.JPG
Maybe you can tell me what setting is preventing the communication with my feed.
Paul
↧
↧
Michael Albers on "[Plugin: Wordfence Security] Whitelist to bypass all rules"
Hi Tim,
Thanks for responding.
Yes, it is. I know I can uncheck this, but then I won't get a message if someone logged in as administrator from an outside IP.
I thought that the alert option would be by passed too, since the by pass option is about by passing all rules.
Michael
↧
insuraati on "[Plugin: Wordfence Security] WordPress core file modified - false positive"
Hi Tim,
I ran wordfence scan and it gave this error
WordPress core file modified: wp-config-sample.php
Is it safe to ignore this in future scans too ? And what does this exactly mean ? Hope not something serious ...
Thanks
↧
Stratus123 on "[Plugin: Wordfence Security] Logged Out as "" ???"
yup.. the site has been scanned, everything is secure and no security problems have been detected.
I just had a quick look in the actual database to check that there wasn't a rogue account in there that wasn't showing up in the dashboard of wp, and it's all clear.
those IP's have been blocked, and no further incidents have occurred since 6 months ago when they were logged.. Still, it's odd :-)
:-)
st.
↧
zampai on "[Plugin: Wordfence Security] WordFence API error and Modified plugin file message"
Yes ! It works perfectly. No more API error. :-) This is answerwing my question !
Does it explain also the fact that I have received this morning more than 150 wordfence mails from my website (user locked out) ?
↧
↧
Dan Nita on "[Plugin: Wordfence Security] What is this deleteme file and should I delete it?"
well tim...? any opinions? I use WF and NF (ninja fwall) and it seems my host has files I have never seen before... but when checking the cPanel no trace of those files...
↧
benchpress on "[Plugin: Wordfence Security] 5.2.7 breaks login"
If I install 5.2.6, login works perfectly. With 5.2.7, it does not.
↧
Coreyrocks on "[Plugin: Wordfence Security] Some sort of brute force attack today? "User locked out from signing in""
I have been getting a ton of "User locked out from signing in" e-mails today, like hundreds. I have pretty strict rules in place on my Wordfence options to autoblock so I'm not entirely concerned, it's just wayyyy more then usual.
It seems every minute or so I get 15 blocked logins - seems a little excessive, is there some sort of widespread brute force attack underway today? Or is it just me. Should I be concerned?
↧
WFSupport on "[Plugin: Wordfence Security] WordFence API error and Modified plugin file message"
Possibly.
tim
↧
↧
WFSupport on "[Plugin: Wordfence Security] Some sort of brute force attack today? "User locked out from signing in""
Hi
head over to our website (http://www.wordfence.com/) and watch attacks in real time on the home page. I see a huge increase of them since Tuesday so its possible your site is getting hit by them now. I would use it as a chance to make sure your passwords are secure, examine security settings, etc, kind of like a reminder to be diligent. You can limit those emails to any number you like an hour on the options page.
tim
↧
WFSupport on "[Plugin: Wordfence Security] 5.2.7 breaks login"
Can you post a lit of your plugins?
Thanks!
tim
↧
crystalworlds on "[Plugin: Wordfence Security] Wordfence firewall prevent me from using Aweber blog broadcast"
I am still having a problem with
On the Facebook side. When someone clicked on the share button it would not load the picture and information into the popup box to be shared on Facebook, again this I think had something to do with the communication to my feed.
Is there any way I can set the firewall setting to minutes and block and not have this issue.
This issue only occurred after I set the firewall settings as per picture Capture5 and I have reset back to default which fixed the Aweber problem, but not the Facebook share problem. (I even used your assistance plugin to clear all the data, but it did not help)
I have sent an email to Jetpack support, as maybe they can help, please see email below
When you click on the Facebook share button on a post the feature image, title and description are not loaded in the share box. It also does not send the information and featured picture to my Facebook page when published just the writing.
Here are screen shot links before and after the issue
http://www.the-secret-of-manifestation.org/images/Capture1.JPG
http://www.the-secret-of-manifestation.org/images/Capture2.JPG
http://www.the-secret-of-manifestation.org/images/Capture3.JPG
http://www.the-secret-of-manifestation.org/images/Capture4.JPG
http://www.the-secret-of-manifestation.org/images/Capture5.JPG
Captue5.JPG is a screen shot of setting that I set in the Wordfence plugin. This was causing similar problems (not communicating with Aweber for blog broadcasts). I have reset it back to default and the other problem went away, However this problem has not
Regard Paul
↧
Coreyrocks on "[Plugin: Wordfence Security] Some sort of brute force attack today? "User locked out from signing in""
Thanks Tim for the quick response and I definitely see what you mean.
↧
↧
benchpress on "[Plugin: Wordfence Security] 5.2.7 breaks login"
The active plugins are:
- Akismet
- BulletProof Security
- Contact Form 7
- Installer
- WPML Multilingual CMS
- WPML String Translation
I have tried deactivating BulletProof Security, but that does not change the exhibited behavior.
↧
Benjamin Uzelac on "[Plugin: Wordfence Security] Secure cookies not honored"
Hello,
I have a client who uses Symantec's site seal. They just forwarded the result of a site scan showing that some cookies on the site aren't secure. (can be sent via plain ole HTTP)
I dug in and noticed that Wordfence does not seem to be honoring secure cookies. My references below are from WF 5.2.7.
I found a function for setting cookies in the WF source:
public static function setcookie($name, $value, $expire, $path, $domain, $secure, $httpOnly){
if(version_compare(PHP_VERSION, '5.2.0') >= 0){
@setcookie($name, $value, $expire, $path, $domain, $secure, $httpOnly);
} else {
@setcookie($name, $value, $expire, $path);
}
}But then when I located that function elsewhere in the source, I was disappointed to see that a null value is being passed for the secure param.
In wordfenceClass.php at line 2441:
wfUtils::setcookie($cookieName, uniqid(), time() + 1800, '/', null, null, true);(I did some quick research into how WP handles secure cookies and stumbled upon wp_set_auth_cookie().)
Any advice you can offer would be appreciated - I want to make sure that the next scan comes up clean and don't want to have to disable WF!
↧
WFSupport on "[Plugin: Wordfence Security] Webshells detected by virus scanner in oldcagefs"
That's not one of our file systems
Can you zip the folder and send it to samples@wordfence.com?
Thanks!
↧