File Change Warnings a Pain

  • Resolved lawriem1

    (@lawriem1)


    6 years, 8 months ago

    Is it possible that the Wordfence scan could be made to be more selective?
    To get a warning about file changes every time a plugin etc is updated is counter productive. It is such a pain to continuously have to check if something malicious has occurred that I’m sure most people will just ignore all the warnings, as I now do.

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Support wfphil

    (@wfphil)

    Hi,

    You shouldn’t normally be getting file change warnings when updating a plugin. Which plugin are you referring to please?

    This can happen if a plugin author isn’t managing their plugin code updates procedure properly at the www.remarpro.com plugin repository.

    If file modification warnings are okay then you do have options to ignore them. To the right of a scan result, on the latest version of Wordfence, you will see an “IGNORE” option. If you click on that you will see these sub-options to ignore scan results:

    Ignore Until File Changes
    Always Ignore

    Thanks.

    Thread Starter lawriem1

    (@lawriem1)

    Thanks for replying Phil.
    It happens with most plugins but as an example I’ve just checked a recent update and it has happened with GDPR Cookie Consent.
    Also, the WF scan seems to be picking up jpg files in the WP-admin folder which were actually on the site in 2015. Format such as phpzesnHT-360×60.jpg for instance.

    Plugin Support wfphil

    (@wfphil)

    Hi,

    What we think it could be is if the site has very low traffic or if it’s locked down
    then it’s possible that WordPress cron only runs when you visit the site.

    This could cause cron jobs to stack up and have all of them run at the same time.

    You could ask your hosting provider to set up a server side cron job to trigger WordPress cron say every 12 hours and see if that resolves your scan results about file changes for multiple plugins.

    With regards the images flagged in a scan can you download three of the flagged images and send them to phil [at] wordfence [dot] com.

    Thanks.

    Thread Starter lawriem1

    (@lawriem1)

    Hi

    I do have Pingdom Tools monitoring up time of my site which checks every minute so I would have thought that would generate enough traffic.

    I have emailed 3 of the flagged images as requested.

    Thanks.

    Plugin Support wfphil

    (@wfphil)

    Apologies for the delay.

    I can’t replicate the scan results with the images you sent. Are you still seeing the same scan results?

    Do you have the “Enable beta threat defense feed” option enabled at the bottom of the Wordfence “Diagnostics” page?

    The file names seem rather strange to me. Are those the original file names you created for those images?

    Also, are you still getting multiple file change warnings?

    Plugin Support wfphil

    (@wfphil)

    Hi,

    Since I haven’t heard back from you I am assuming that the instructions solved your issue so I am marking this topic as resolved.

    If however, for whatever reason, you are still experiencing this issue and it is not resolved please respond to the post, which moves it back up the queue, and mark this topic as “not resolved”.

    Thank you.

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘File Change Warnings a Pain’ is closed to new replies.