Detecting .pid file that does not exist

  • Resolved coldxot

    (@coldxot)


    4 months, 2 weeks ago

    Hello,

    I am having an isseu with WordFence detecting a file /wp-admin/.pid in WordPress core and determining it is a critical risk.

    Looking into it has led me to threads determining this file is related to LiteSpeed, but they confirmed they do not add it to WordPress core in /wp-admin.

    When I look in /wp-admin this file does not exist… yet the alert continues.

    Can you please provide guidance here?

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @coldxot, thanks for reaching out!

    I did see the connection to Litespeed Cache plugin but their developer has indeed confirmed they don’t create it in /wp-admin. Are you viewing all hidden files/folders when looking for it, as files beginning with a . may be hidden by default on some applications.

    There’s a possibility that a process running during the scan on your server does create a legitimate .pid file but I can’t say for sure without knowing the contents whether it is something you can safely ignore in our settings for future scans.

    Let us know if you find out any more!
    Peter.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.