WordFence will scan MySQL dumps, .git directories, *.tar.gz files, etc. I'd like to make a suggestion to either exclude these by default, or give us an option to manually add regex rules to have WordFence not scan such objects. When I run an strace on an Apache process, it'll issue an open() process call for each of these, causing CPU load to spike (especially when database dumps are GB in size). :(
↧