Quantcast
Channel: WordPress.org Forums » [Wordfence Security - Firewall, Malware Scan, and Login Security] Support
Viewing all 33327 articles
Browse latest View live

wfalaa on "[Plugin: Wordfence Security] Running the WF plugin on a non-writable filesystem (GCP)"

June 20, 2016, 8:22 am
$
0
0

Hi,
Wordfence writes to these files/directories on regular basis, especially if you have "Caching" enabled in (Wordfence > Performance Setup), also when you first configure the firewall settings.

It's really hard to enumerate when/how Wordfence writes to these files/directories mentioned.

I agree with you -theoretically- regarding the installation and configuration of the plugin locally then deploying it on GAE, however I'm not sure about how sustainable this installation will be.

I'm sorry for not being too helpful, but as I told you earlier this isn't a standard server installation that we support.

Thanks.

Search

mengsel on "[Plugin: Wordfence Security] Running the WF plugin on a non-writable filesystem (GCP)"

June 20, 2016, 8:33 am
$
0
0

Hi wfalaa,

That's perfectly alright, thank you very much for your insight so far! At this point it becomes a theoretical situation that can best be tackled by simply trying it out in practice. If you're interested I'm happy to keep you appraised of the complications and possible solutions, otherwise feel free to mark the topic as solved. With the rising popularity of GCP I'm sure a bit of foresight into this might come in handy.

Thanks again!

jfacemyer on "[Plugin: Wordfence Security] WP-CLI errors"

June 20, 2016, 8:35 am
$
0
0

I'm getting these errors with everything updated:

Notice: Undefined index: SERVER_NAME in /home/vianney/www/shvcamps.com/wp-content/plugins/wordfence/lib/wfUtils.php on line 641
Notice: Undefined index: HTTP_HOST in /home/vianney/www/shvcamps.com/wp-content/plugins/wordfence/lib/wfCache.php on line 38
Notice: Undefined index: SERVER_NAME in /home/vianney/www/shvcamps.com/wp-content/plugins/wordfence/lib/wfCache.php on line 38

https://wordpress.org/plugins/wordfence/

wfalaa on "[Plugin: Wordfence Security] Google Maps javascript error"

June 20, 2016, 8:37 am
$
0
0

Hi JosiahW,
Sorry for my late reply, I confirm that Wordfence disables its settings when the plugin is deactivated.

You can deactivate all your plugins (including Wordfence) and re-check this issue, if everything went well then you may need to re-activate your plugins one by one till you find the culprit.

Also, you can open the JavaScript console in your browser to check if there are any errors there, this guide will show you how to open this console.

Let me know how it goes,
Thanks.

lifeisanepisode on "[Plugin: Wordfence Security] Can't install Wordfence"

June 20, 2016, 9:03 am
$
0
0

I have purchased a premium licence of Wordfence for our website https://www.eurofloorslondon.co.uk/ but when I replaced the free licence number with the premium licence number it didn't save it but kept the free licence instead. Is there anything you know about this behaviour and I should do to save the premium licence? Thank you.

wfasa on "[Plugin: Wordfence Security] Scan problem: Error writing value chunk for wfsd_engine (error"

June 20, 2016, 11:45 am
$
0
0

Wrote this in email but for posterity also adding here in case someone else is searching for answers to similar issues. Minimum required PHP version to run WordPress is 5.2.4, recommended version is 5.6.

wfasa on "[Plugin: Wordfence Security] Invalid Date Invalid Date (NaN seconds ago)"

June 20, 2016, 11:54 am
$
0
0

Hello again,
well if it works in a fresh subdirectory install of course my suspicion would be that the problems in your root install are due to some plugin conflict. But you have tried deactivating all other plugins so I guess that's not it.

I think the javascript error is caused by the lack of data rather than the other way around.

If you visit your site from a different browser than the one you are logged in to, is anything entered in to the database table wfHits? If it is not, then there should be some entry in your servers error log.

wfasa on "[Plugin: Wordfence Security] Scan doesn't complete"

June 20, 2016, 12:15 pm
$
0
0

Hello again!
I'm afraid we haven't seen this error on any sites before and the way you describe it makes it seem like it's probably some setting on your site that needs to be changed.

All these installs are running against their own separate databases, is that correct?

Search

wfasa on "[Plugin: Wordfence Security] Fatal Error"

June 20, 2016, 12:18 pm
$
0
0

icestorm22,
you need to contact your host and ask them for help about this right away. Clues as to why your site is inaccessible should be available in the servers error logs. Oftentimes these are made available via the web hosts administration tool but if they are not, as your host to look for them.

If you can find the error logs yourself feel free to share them with me and I can help you interpret them. Email them as plaintext to asa@wordfence.com. Include your WordPress username in the email so I know who the email is coming from.

JosiahW on "[Plugin: Wordfence Security] Google Maps javascript error"

June 20, 2016, 12:25 pm
$
0
0

Thank you. I will give that a shot. The error I get in JavaScript console is saying it is an issue with the Google Maps API. I have checked and my API key is correct and entered properly.
Time to start disabling everything.

wfasa on "[Plugin: Wordfence Security] Excessive size increasing of wfConfig table"

June 20, 2016, 12:44 pm
$
0
0

Hello boryanka,
I have checked with a couple of our devs now and they had two theories.

1. If you are copying the site between dev and production it is theoretically possible that the dev server could be trying to start scans on the live server or vice versa.

2. A behavior like this could be the result if MySQL’s max_allowed_packet is set very, very low OR if MySQL fails to report max_allowed_packet.

You can check the setting value by running this SQL (in phpMyAdmin or in console): SHOW VARIABLES LIKE 'max_allowed_packet';

It might be easiest to just forward this information to your web host and have them confirm or deny the hypothesis.

wfasa on "[Plugin: Wordfence Security] A Possible False Negative? Unable to open wp-content/wflogs/ips.php..."

June 20, 2016, 12:49 pm
$
0
0

Hello mayankrungta,
It's log data from Wordfence so it will change with time. I will set this to resolved for now. Thanks!

brainchildmedia on "[Plugin: Wordfence Security] Email sent to admin when site goes down?"

June 20, 2016, 1:31 pm

maorb on "[Plugin: Wordfence Security] Why Colorbox is loaded on frontend via WordFence?"

June 20, 2016, 1:42 pm
$
0
0

Hi,
Thanks for your great plugin.
Lately I've noticed the WordFence is adding calls to Colorbox css and js files in the frontend of the site.
Why does WF do this?
More than that, in a custom theme that enques the colobox, the result it 2 js and 2 css files, and also WF is overriding theme's custom #cboxContent css rule.
This looks like a bug, maybe WF needs colorbox in the admin only, but why on the frontend?

Thanks

https://wordpress.org/plugins/wordfence/

mountainguy2 on "[Plugin: Wordfence Security] Why Colorbox is loaded on frontend via WordFence?"

June 20, 2016, 2:18 pm
$
0
0

Hi Masorb, as far as I know as a heavy Wordfence user, Colorbox only loads if you're logged in as an admin. Not quite as bad as it doing it all the time, but still, every little bit counts. Especially if you've got several admins who are in there quite a bit, depending on css caching settings...

Of more concern is Google Site Search, Facebook and other bloated stuff that loads enormous amounts of totally unused CSS, often not minified. Frustrating to say the least. Especially Google, who on the one hand tell us to run tighter sites, but then their CSS for one little search box is about 10 times larger than my theme css. Lame, to put it mildly.

MTN

Search

mountainguy2 on "[Plugin: Wordfence Security] Email sent to admin when site goes down?"

June 20, 2016, 2:21 pm
$
0
0

How could it? The site would be down and various forms of email would likely not function. You have to get that kind of notification set up with your host at the server level, or perhaps even a third party service.

Check out site24x7.com for example.

MTN

brainchildmedia on "[Plugin: Wordfence Security] Email sent to admin when site goes down?"

June 20, 2016, 2:24 pm
$
0
0

Makes sense. I've got something set up via Jetpack and have all the modules disabled other than the monitor via another plugin. I just didn't want to have three plugins if one did the job.

Thanks for the response!

mountainguy2 on "[Plugin: Wordfence Security] brute force attack from multiple locations."

June 20, 2016, 2:39 pm
$
0
0

My solution:

1. Install and enable plugin "Disable XML-RPC"
2. Rename XML-RPC file in site root so it ceases to exist.
3. Add to .htaccess
<Files xmlrpc.php>
deny from all
</Files>
4. Use country blocking whenever possible.
5. Thank the WordPress developers for their nice little bot attractant known as xmlrpc.php. It's so kind of them to give us ways to enjoy watching swarms of bots take down our websites.

6. See https://wordpress.org/support/topic/xmlrpcphp-attack-on-wordpress-38?replies=28

MTN

mountainguy2 on "[Plugin: Wordfence Security] Why Colorbox is loaded on frontend via WordFence?"

June 20, 2016, 2:59 pm
$
0
0

I got curious and deleted all the CSS in Colorbox.css, reloaded, Wordfence admin seems to look exactly the same, nothing seems broken. Ah, the mysteries of bloat. MTN

krandman on "[Plugin: Wordfence Security] Admin Notifications after site transfered out"

June 20, 2016, 3:24 pm
$
0
0

Hi!

We recently transferred a site out from us where we had WordFence installed and forgot to remove our emails from the options section.

I've contacted our former client and asked to be removed but when he checks there is no WordFence plugin on their side.

When I view their sites page source I no longer see that plugin at the bottom. I'd like to stop receiving updates on a site we no longer manage.

Any thoughts or suggestions?

Thanks!

https://wordpress.org/plugins/wordfence/

Viewing all 33327 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>