HIDE INFORMATION ON 403 ERROR MESSAGE-A potentially unsafe operation has been…

  • Resolved Panos

    (@xpanos)


    4 years, 2 months ago

    Greetings and a Happy healthy New year,

    After a failed attempt on hacking a site of ours, thanx to Wordfence WAF of cource it get blocked ?? we used the same link the intruder tried to find a way into our site, in the browser and the browser came up with a Wordfence 403 error page “A potentially unsafe operation has been detected in your request to this site”.

    As we understand the same page came up to the intruder too.

    The thing is that on that 403 page reveiled the infos that we use WordPress and Wordfence.

    The question is, is there a way we can change this page to another one that will not reveil these informations or can we manage somehow to chance the message to this one so this infos does not reveil to the public or potential intruders?

    Thanx in advance and have a great and productive new year

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @xpanos, thanks for your question.

    Many automated attacks will naturally not process what is presented on this page in the same way a human would, but I totally take on board your desire to customise that page in the events where real human attackers are being blocked.

    We have an open development ticket for allowing our customers to customize these error pages, and each request strengthens the case for inclusion in the plugin so I will add your request to this ticket. Naturally I cannot comment here on potential delivery timescales but everything is discussed when considering our release schedule.

    Thanks,

    Peter.

    Thread Starter Panos

    (@xpanos)

    thanx for your consideration on that @wfpeter

    I forgot to mention above that the intruder’ attacks were human attacks and not bot attacks. Either case we are conserned why site informations regarding the plugin we use for our deffence or greater than that, our cms platform (wordpress) must reveiled on such an error page, specially to an attacker.

    Waiting for some future news from you on that.

    Stay safe
    regards

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘HIDE INFORMATION ON 403 ERROR MESSAGE-A potentially unsafe operation has been…’ is closed to new replies.