@pglove: Thanks, I've mentioned these to the dev team, too.
@webado: 4000 is definitely unusual -- can you click the link "Email activity log" above the "Scan detailed activity" box on the Scan page, and click the Send button? (Please reply here when you've sent it too, so I can match your log to this post.)
-Matt R
My site doesn't allow registration of visitors.
Only Admin accesses the site.
The site is getting hit constantly with:
/wp-login.php?action=register hits.
Is there a way to block these hits before they ever see the login screen?
What about adding this URL to the:
Immediately block IP's that access these URLs list?
Thanks
Tim
Hi MTN,
I think this is the post you are looking for.
You can use doNoCache() function in your pages and Wordfence will stop caching any page request with this function call, the proper use of this function should be like that:
if (class_exists('wordfence')) {
wordfence::doNotCache();
}Regarding where to implement this function in your case, I think you can implement it in your theme widgets files (for the most recent comments and the advertising banner widget), but I'm not sure which plugin/custom code you are using to redirect users to mobile website version, that's where you will need to prevent caching.
Let me know if you have any further question,
Thanks.
OK Matt T, I did that. You'd have received an email from my site.
I also see this at the end of the scan:
[Jul 26 10:48:45]Scan complete. You have 4753 new issues to fix. See below.Scan Complete.
One of the warnings I am aware of as I changed manually header.php myself to add Google Analytics.
One or two others I've seen before but couldn't figure out. I thought maybe they were due to changed plugins but was wondering why they get flagged.
Now it's a flood.
Hi !
My website shows "Your PHP installation appears to be missing the MySQL extension which is required by WordPress."
My hosting company support told me that after upgrading server mysql extension is not supported any more, but mysqli is active now. After searching for possible conflicts, I found Wordfence code lines in .htacces file causes problem
# Wordfence WAF
<IfModule mod_suphp.c>
suPHP_ConfigPath '/home/tovgorg/public_html'
</IfModule>
<Files ".user.ini">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</Files>
# END Wordfence WAFWhat is the solution and how to fix it ?
Thanx
took my site down too - single site. nothing non-standard.
took site down. Forced to deleted WordPress plugin directory to restore operation.
Someone opened this thread for support, let's not flood their support requests with 'me too' posts. If you want support then please open a new thread, otherwise you need only follow the support given in this thread.
Hi Matt,
Thanks for your quick response to this issue. I see you've marked this case as resolved. Unfortunately the the latest update 6.1.12 generates the exact same ~1040 list of unknown ._* file warnings as the previous version.
Tested on different sites with the same results.
All files concerned start with ._ and all are found within the wp-admin/ and wp-includes/ directories.
If you'd like me to start a new thread, I'd be happy to do so. Or maybe you could re-open this thread?
Many Thanks
Steve
No failures but after upgrade Wordfence id'd one file as malicious. Sorry I deleted without copying, but file name had deleteme and a string of numbers and characters. Also had 7 core files it said that were old files from a previous version of WordPress, also deleted as recommended by WF. Seems they had to do with tinymce, full screen, etc. as mentioned in a previous thread and a known issue.
Ran a new scan, no issues but a notice:
Scan Detailed Activity
Notice: Undefined index: coreUnknown in /home/drschlenker/public_html/clinic/wp-content/plugins/wordfence/lib/wordfenceHash.php on line 141 0
Any worries?
Hi,
I'm using WordFence 6.1.12 and HHVM 3.13.2.
Recently HHVM crashes very often because of WordFence.
Here's the HHVM stacktrace.
PHP Stacktrace:
#0 include() called at [/danbi/sites/dilly/danbistore3/wp-content/plugins/wordfence/vendor/wordfence/wf-waf/src/lib/waf.php:225]
#1 wfWAF->loadRules() called at [/danbi/sites/dilly/danbistore3/wp-content/plugins/wordfence/vendor/wordfence/wf-waf/src/lib/waf.php:134]
#2 wfWAF->run() called at [/danbi/sites/dilly/danbistore3/wp-content/plugins/wordfence/waf/bootstrap.php:259]
#3 include(/danbi/sites/dilly/danbistore3/wp-content/plugins/wordfence/waf/bootstrap.php) called at [/danbi/sites/dilly/danbistore3/wp-content/plugins/wordfence/wordfence.php:54]
#4 include(/danbi/sites/dilly/danbistore3/wp-content/plugins/wordfence/wordfence.php) called at [/danbi/sites/dilly/danbistore3/wp-settings.php:255]
#5 include(/danbi/sites/dilly/danbistore3/wp-settings.php) called at [/danbi/sites/dilly/danbistore3/wp-config.php:82]
#6 include(/danbi/sites/dilly/danbistore3/wp-config.php) called at [/danbi/sites/dilly/danbistore3/wp-load.php:37]
#7 include(/danbi/sites/dilly/danbistore3/wp-load.php) called at [/danbi/sites/dilly/danbistore3/wp-blog-header.php:13]
#8 include(/danbi/sites/dilly/danbistore3/wp-blog-header.php) called at [/danbi/sites/dilly/danbistore3/index.php:17]
Please check this out.
Thanks.
Hi guys read you're experience this issue before.
Since yesterday I get this alert:
* Unknown file in WordPress core: wp-admin/includes/upgrade.php.orig
* Unknown file in WordPress core: wp-admin/plugin-uploader.php
* Unknown file in WordPress core: wp-admin/theme-uploader.php
* Unknown file in WordPress core: wp-admin/uploader/pclzip.lib.php
* Unknown file in WordPress core: wp-admin/uploader/upload.php
* Unknown file in WordPress core: wp-includes/functions.php.orig
I should ignore this?
thanks
Same problem here, same Wordfence version (6.1.12) and Wordpress 4.5.3. Right in the middle of the additional files scan:
[Jul 27 01:26:52] Scanned contents of 495 additional files at 20.63 per second
[Jul 27 01:26:53] Notice: Undefined index: coreUnknown in ***path redacted***/wp-content/plugins/wordfence/lib/wordfenceHash.php on line 141
[Jul 27 01:26:53] Scanned contents of 548 additional files at 21.91 per secondAdditionally I have this notice at the very end:
[Jul 27 01:28:26] Notice: An unexpected error occurred. Something may be wrong with WordPress.org or this server’s configuration. If you continue to have problems, please try the support forums. (WordPress c
And yes, that really is cut off at the c like that, there is nothing after that. So I'm not quite sure what this "unexpected error" actually is.
I have 8 Wordpress sites all with hostgator. I have installed Wordfence on all 8 sites. Wordfence is saying the file wp-admin/.backup_time is bogus - but it has appeared at the same exact time on all 8 of my sites; leading me to believe it's been born from something Hostgator is doing server side; perhaps backups?
My sites appear completely unaffected and work as normal.
Is wp-admin/.backup_time always bad???
The wordfence option Scans To include
Scan wp-admin and wp-includes for files not bundled with WordPress
Turn-off the option or just ignore the error.
wordfenceHash.php
line 102 array statement is missing element 'coreUnknown'
add to array like below
$this->haveIssues = array(
'core' => false,
'themes' => false,
'plugins' => false,
'malware' => false,
'coreUnknown' => false
);
Running 6.1.12
Seeing scan activity entry
Notice: Undefined index: coreUnknown in /home/admin/public_html/wp-content/plugins/wordfence/lib/wordfenceHash.php on line 141
i have found solutions on not caching an entire page, but the number widget appears on all pages. what if i want to stop caching just for the widget and not the entire page?
Hi
Previous thread about this issue was marked resolved, so I am posting my list of "unknown" files here:
These are the files that Wordfence is returning as "unknown".
wp-admin/.bt
wp-admin/data.txt
wp-admin/edit-form-tags.php
wp-admin/includes/class-wp-admin-list-table.php
wp-admin/includes/class-wp-filesystem-admin.php
wp-admin/includes/jquery.php
wp-admin/link-parse-editor.php
wp-admin/link-parse-form.php
wp-admin/link-parse-gate.php
wp-admin/media-parse-new.php
wp-admin/options-admins.php
wp-admin/plugin-change.php
wp-admin/scripts/script1.php
wp-admin/scripts/script211.php
wp-admin/scripts/script3.php
wp-admin/scripts.zip
wp-includes/.DS_Store
wp-includes/SimplePie/Net/IPv4.php
Thanks,
David
Yes not solved for me too need to know if is an attack or Wordfence issue